Wiper

Open Source Ransomware Toolkit Cryptonite Turns Into Accidental Wiper Malware

Dec 6, 2022 by iHash Leave a Comment

Dec 06, 2022Ravie LakshmananEndpoint Security / Data Security A version of an open source ransomware toolkit called Cryptonite has been observed in the wild with wiper capabilities due to its "weak architecture and programming." Cryptonite, unlike other ransomware strains, is not available for sale on the cybercriminal underground, and was instead offered for free by an actor … [Read more...] about Open Source Ransomware Toolkit Cryptonite Turns Into Accidental Wiper Malware

The Anatomy of Wiper Malware, Part 4: Helper Techniques

Oct 29, 2022 by iHash Leave a Comment

This is the fourth blog post in a four-part series. Read Part 1 | Part 2 | Part 3. In Part 3, CrowdStrike’s Endpoint Protection Content Research Team covered the finer points of Input/Output Control (IOCTL) usage by various wipers. The fourth and final part of the wiper series covers some of the rarely used “helper” techniques implemented by wipers, which achieve secondary … [Read more...] about The Anatomy of Wiper Malware, Part 4: Helper Techniques

The Anatomy of Wiper Malware, Part 1: Common Techniques

Aug 27, 2022 by iHash Leave a Comment

This blog post is the first in a four-part series in which CrowdStrike’s Endpoint Protection Content Research Team will dive into various wipers discovered by the security community over the past 10 years. Our goal is to review in depth the various techniques employed by wipers that target the Windows operating system. Background A wiper is a type of malware with a single … [Read more...] about The Anatomy of Wiper Malware, Part 1: Common Techniques

The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Aug 25, 2022 by iHash Leave a Comment

In Part 1 of this four-part blog series examining wiper malware, we introduced the topic of wipers, reviewed their recent history and presented common adversary techniques that leverage wipers to destroy system data. In Part 2, CrowdStrike’s Endpoint Protection Content Research Team discusses how threat actors have used legitimate third-party drivers to bypass the visibility … [Read more...] about The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Russian Wiper Malware Likely Behind Recent Cyberattack on Viasat KA-SAT Modems

Apr 1, 2022 by iHash Leave a Comment

The cyberattack aimed at Viasat that temporarily knocked KA-SAT modems offline on February 24, 2022, the same day Russian military forces invaded Ukraine, is believed to have been the consequence of wiper malware, according to the latest research from SentinelOne. The findings come as the U.S. telecom company disclosed that it was the target of a multifaceted and deliberate" … [Read more...] about Russian Wiper Malware Likely Behind Recent Cyberattack on Viasat KA-SAT Modems

Second New ‘IsaacWiper’ Data Wiper Targets Ukraine After Russian Invasion

Mar 2, 2022 by iHash Leave a Comment

A new data wiper malware has been observed deployed against an unnamed Ukrainian government network, a day after destructive cyber attacks struck multiple entities in the country preceding the start of Russia's military invasion. Slovak cybersecurity firm ESET dubbed the new malware "IsaacWiper," which it said was detected on February 24 in an organization that was not affected … [Read more...] about Second New ‘IsaacWiper’ Data Wiper Targets Ukraine After Russian Invasion

HermeticRansom used as a smokescreen for wiper attacks

Mar 2, 2022 by iHash Leave a Comment

Our researchers analyzed the HermeticRansom malware also known as Elections GoRansom. By and large, this is a fairly simple cryptor. What is interesting in this case is the purpose for which attackers are using it. HermeticRansom goals HermeticRansom attacked computers at the same time as another malware known as HermeticWiper, and based on publicly available information from … [Read more...] about HermeticRansom used as a smokescreen for wiper attacks

CrowdStrike Protects from Wiper Malware Used in Ukraine Attacks

Feb 26, 2022 by iHash Leave a Comment

On Feb. 23, 2022, a new wiper malware was reported targeting Ukraine systems The wiper destroys files on infected Windows devices by corrupting specific elements of connected hard drives CrowdStrike Intelligence refers to this destructive malware as DriveSlayer DriveSlayer is the second recent destructive malware targeting Ukraine, following WhisperGate The CrowdStrike Falcon® … [Read more...] about CrowdStrike Protects from Wiper Malware Used in Ukraine Attacks

UVCeed Mobile UVC Light Sanitizer for $119

AddStars Reviews: Lifetime Subscription for $59

Locker Password Manager Premium Plan: Lifetime Subscription for $49

The 2023 Complete Blender Bundle: Learn to Create Game Art in Blender for $34

The 2023 Complete AWS Cloud Engineer, Developer & Architect Course Bundle for $49