Latest News

Vectra AI to help organisations protect against wiper cyberattacks targeting Ukraine

Vectra AI, a leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises, today responded to the expanding cyberattacks in the Ukraine-Russia conflict by offering a slate of free cybersecurity tools and services to organisations who believe they may be targeted.

Bank websites and ATMs, as well as military computer networks, have been disabled in recent days by cyberattacks, and disinformation campaigns meant to provoke panic have rippled across cellular networks.

“Escalating cyber conflict will lead to unanticipated consequences,” said Hitesh Sheth, President and CEO, Vectra AI. “No public or private organisation is assured of remaining a mere spectator.”

The company is actively tracking new attack indicators associated with the conflict in Ukraine and Russia, as well as other conflicts around the world.

For immediate assistance in the current emergency, Vectra AI will offer the following services on a complimentary basis:

  • Scan Microsoft Azure AD and M365 environments for signs of attack activities
  • Monitor AWS infrastructure for signs of active attacks, in addition to the provision of detection and response tools for both the network and control plane of AWS accounts
  • Surveil network infrastructure both in the cloud and on-premises for signs of attack, including deployment of Vectra sensors that are purpose-built to detect malicious behaviour
  • Support the retention of historical metadata to aid incident response investigations based on indicators of compromise (IOCs) for specific attack variants
  • Use newly-acquired technology from Siriux to immediately discover malicious Microsoft Azure Active Directory activity that could lead to the compromise of Exchange Online mailboxes

Attacks previously attributed to Russian actors are known to disrupt the Microsoft Enterprise Cloud and gain access to critical information.

“In these challenging times, it is really important that organisations operating in CNI, finance and government remain extremely vigilant and ensure that known vulnerabilities are addressed and current detection capabilities are also enhanced,” said Steve Cottrell, EMEA CTO at Vectra AI. “Advanced threat detection capabilities mean that organisations can more quickly identify and mitigate the impact of threats in the cloud and across enterprise networks. Where gaps are identified, Vectra is ready to help in a straightforward, cost-free and unconditional manner. We want to ensure that, at the very least, the cyber crisis is de-escalated as quickly as possible.”

For more information and eligibility guidance, visit the Vectra AI site or read our latest blog titled, “Russian Wiper Malware is Novel – Protecting Against it Need Not Be.”


About Vectra AI

Vectra AI® is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises.

The Vectra Platform captures packets and logs across network, public cloud, SaaS, and identity by applying patented security-led AI to surface and prioritize threats for rapid threat response. Vectra’s threat detections are powered by a deep understanding of attacker methods and problem-optimized AI algorithms. Alerts uncover attacker methods in action and are correlated across customer environments to expose real attacks. Organisations around the world rely on Vectra to see and stop threats before a breach occurs. For more information, visit