Elastic Security has confirmed a new destructive malware attack targeting Ukraine, known as Operation Bleeding Bear. Microsoft recently released details about this multi-stage malware campaign, which has been highlighted by Ukraine's National Cybersecurity Coordination Center. Elastic's users are protected against such attacks due to their advanced malware detection and ransomware protection capabilities, with Elastic Security continuing to monitor these developments. The attack underscores the importance of preventive measures against ransomware and destructive malware. The full article provides an analysis of the malware involved, behavior patterns for detection, and detailed recommendations for protection, including indicators of compromise and mitigation instructions using Elastic Security and the MITRE ATT&CK® framework. Current Elastic Security users can access these capabilities, while new users are encouraged to explore quick-start guides and avail a free 14-day trial of Elastic Cloud.