The list of malicious viruses born with the conflict is growing. Researchers from computer security company Eset have discovered CaddyWiper, a threat that affects computers in Ukraine, erasing user data and information contained on systems. It is the third “wiper” malware discovered by Eset since the beginning of the Russian invasion. A type of attack that aims to delete the archives on compromised devices.
At the end of February, upon the discovery of the first wiper, the Italian Cybersecurity Agency had invited companies and public administrations to “urgently implement the indicators of compromise available” on the Csirt website (the incident response team operating in the within the Agency) and “raise the level of attention by adopting mitigation actions as a matter of priority”. The US Cybersecurity and Infrastructure Agency had done the same, assuming an escalation of malware outside the Ukrainian territory.
“We know that if the wiper works, it will render the affected systems unusable. However, to date we do not know the real impact of the threat,” the company explained regarding this new virus. Eset was responsible for the discovery of HermeticWiper on February 23, one day before Russia began its military invasion of Ukraine. The next day IsaacWiper emerged.
Both aimed at targeting Ukrainian computers as their primary target. However, a timeline shared by the researchers suggested that both IsaacWiper and HermeticWiper were in development months prior to release. Researchers recall how hackers who support Ukraine act completely opposite to wipers, spreading the data they steal rather than deleting it.
I have been working in the news industry for over 10 years now and I have worked for some of the biggest news websites in the world. My focus has always been on entertainment news, but I also cover a range of other topics. I am currently an author at Global happenings and I love writing about all things pop-culture related.