Microsoft discovers new ransomware attack on Ukraine and Poland
Microsoft has uncovered a new ransomware attack targeting transportation and logistics organizations in Ukraine and Poland, involving the Prestige ransomware deployed simultaneously on October 11, 2022. This attack aligns with recent Russian state-aligned activities in terms of victimology and targeted countries.
Microsoft’s Threat Intelligence Centre has identified evidence of a novel ransomware campaign targeting organisations in the transportation and related logistics industries in Ukraine and Poland.
According to Microsoft, the Prestige ransomware was deployed on 11 October 2022 in attacks occurring within an hour of each other across all target organisations. The company also noted that it has not observed Prestige prior to this deployment, but that ‘the activity shares victimology with recent Russian state-aligned activity, specifically on affected geographies and countries’.