Microsoft Discovered FoxBlade Malware Hit Ukraine Hours Before Russian Invasion
Reading Time: < 1 minute

Microsoft discovered FoxBlade Malware hit Ukraine hours before the Russian invasion. According to the revelation, the intrusion included a never-before-seen malware package dubbed FoxBlade. Microsoft Threat Intelligence Center (MSTIC), said it added new signatures to its Defender anti-malware service to detect the exploit within three hours of the discovery.

Microsoft’s President and Vice-Chair, Brad Smith, said “These recent and ongoing cyberattacks have been precisely targeted, and we have not seen the use of the indiscriminate malware technology that spread across Ukraine’s economy and beyond its borders in the 2017 NotPetya attack,” 

Further investigations into FoxBlade did not give information about the mode of initial access, though Microsoft in a Security Intelligence advisory stated that “this trojan can use your PC for distributed denial-of-service (DDoS) attacks without your knowledge.”

Further, it looks like the delivery of the trojan was facilitated by means of a second “downloader” module that’s capable of retrieving and installing the malware on the compromised machines.

The disclosure comes amidst the cyber assaults ranging from malicious data wipers to DDoS attacks that continue to rain down on Ukrainian government and banking websites and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) warning about such attacks from across the Ukrainian borders. 

CISA added, “Destructive malware can present a direct threat to an organization’s daily operations, impacting the availability of critical assets and data. Further disruptive cyberattacks against organizations in Ukraine are likely to occur and may unintentionally spill over to organizations in other countries.”

Related Articles:
US Will Attack Cybercriminals First and Ask questions later
Hacker Actively Stealing High-Value NFTs From OpenSea Users
Security Concerns in Cloud Computing Can be a Major Hurdle in Cloud Adoption