The Russian state-controlled hacking group Sandworm has recently conducted a series of destructive cyberattacks against Ukraine, targeting various sectors including government, energy, logistics, and the grain industry. The attacks involved the deployment of wipers, a type of malware designed to permanently erase data and disrupt infrastructure.
In April, Sandworm targeted a Ukrainian university with wipers named Sting and Zerlot, aiming to obliterate sensitive data stored on Windows computers. Subsequently, in June and September, multiple wiper variants were launched against critical infrastructure entities, signifying a broader assault on Ukrainian systems.
While wiper attacks are not new to Russian hackers, the focus on Ukraine’s grain sector highlights an attempt to undermine the country’s economic stability, particularly its revenue from grain exports.
Notably, wipers have been a preferred tool for Russian hackers for years, with incidents like the NotPetya worm causing widespread financial damage globally. NotPetya, initially targeting Ukraine, quickly spread worldwide, disrupting thousands of organizations and resulting in billions of dollars in losses.
Source: Ars Technica