ALERT: ‘Prestige’ ransomware attacks on Polish logistics firms

The Microsoft Threat Intelligence Center reports a campaign of new ransomware attacks targeting Polish and Ukrainian transport and logistics companies. The attacks began on 11 October 2022 and are being carried out by software identifying itself as ‘Prestige ransomeware’.

The attacks are attracting attention because they are not connected to any of currently observed groups tracked by Microsoft, have been conducted recently and, according to Microsoft, appear to be linked to the war in Ukraine. 

Responding to an attack may require – depending on the case – notifications to the relevant authorities as required by cyber security law, critical infrastructure law and data protection laws, in addition to taking IT action.