5 December 2022

Microsoft: Russia combines missile and cyberattacks in Ukraine


Microsoft: Russia combines missile and cyberattacks in Ukraine

Russia has intensified its multi-pronged hybrid technology approach, which includes both kinetic military operations and cyberattacks on Ukrainian civilian infrastructure to pressure the sources of Kyiv’s military and political support, Microsoft has warned in a new report.

In recent months threat actors working on behalf of the Russian government have targeted energy, water, and other critical infrastructure organizations in Ukraine with data wiping malware as missile strikes disrupted power and water supplies to civilians across the country. Moreover, the terrorist state’s cyber operations have spilled beyond Ukraine, as the recent series of Prestige ransomware attacks have shown. Microsoft has attributed this campaign to a threat cluster tracked as Iridium (DEV-0960) that shares overlaps with the well-known Russia-linked threat actor Sandworm.

“We believe these recent trends suggest that the world should be prepared for several lines of potential Russian attack in the digital domain over the course of this winter. First, we can expect a continuation of Russia’s cyber offensive against Ukrainian critical infrastructure,” Microsoft said. “We should also be prepared for the possibility that Russian military intelligence actors’ recent execution of a ransomware-style attack—known as Prestige—in Poland may be a harbinger of Russia further extending cyberattacks beyond the borders of Ukraine. Such cyber operations may target those countries and companies that are providing Ukraine with vital supply chains of aid and weaponry this winter.”

The tech giant has also warned that parallel with cyber threat activity Russia would likely conduct cyber-enabled influence operations targeting Europe to undermine military and humanitarian assistance to Ukraine.

“In the coming months, European nations will likely be subjected to a range of influence techniques tailored to their populations’ concerns about energy prices and inflation more broadly. Russia has and will likely continue to focus these campaigns on Germany, a country critical for maintaining Europe’s unity and home to a large Russian diaspora, seeking to nudge popular and elite consensus toward a path favorable to the Kremlin,” the company said.

 

Back to the list

Latest Posts

Free VPN apps on Google Play turned Android devices into residential proxies

Free VPN apps on Google Play turned Android devices into residential proxies

The threat actor behind this scheme profits by selling access to the residential proxy network to third parties.
28 March 2024
Cyber spies strike Indian government and energy sectors

Cyber spies strike Indian government and energy sectors

The operation involved phishing emails delivering the HackBrowserData info-stealer.
28 March 2024
Spyware makers and state-backed hackers are primary culprits behind rise in zero-day exploits, Google says

Spyware makers and state-backed hackers are primary culprits behind rise in zero-day exploits, Google says

97 zero-day flaws were exploited in-the-wild in 2023, marking an increase of over 50% compared to 2022.
27 March 2024