Ukraine government firms now jostling with a new wiper malware variant


Cybersecurity researchers from ESET have discovered a new CaddyWiper malware on servers of some organizations belonging to the Ukrainian government. And the news is out that the malicious software can conduct espionage and send data to remote servers.

Thus, after HermeticWiper and IsaacWiper malware, CaddyWiper also stands in the same list of malicious software that is being spread by hackers who have the access to the infecting network beforehand.

Interestingly, ESET researchers found CaddyWiper avoids wiping data on domain controllers while still disrupting other core operations.

As expected, the said wiping malware is also being spread through phishing emails, where attackers email the victim mimicking a client and then make them submit sensitive details like banking credentials through a malicious link-led web page.

Sometimes, the hackers also mimic the Windows AV webpage and ask the victim to click on the malicious link to get the utmost security. But a payload downloads onto their system as soon as they click on the link and lead the victim to a digital disaster.

Coming to the war, Ukraine has been facing stern military actions from the Putin-led nation for the past 20 days. But its soldiers and public never led their morale down, thus reaping praises from the entire world.

BTW, the fourth round of peace talks was held between Zelenskyy led representatives and the Russian army yesterday. While the former wants to stop the war, the latter wants Ukrainian soldiers to surrender to the government of the Russian federation.


Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display