Five Data Wipers Had Been Deployed Against Ukrinform

Category: Russia & Ukraine | Industry: Global | Level: Strategic | Source: CERT-UA

An ongoing investigation by the Ukrainian Computer Emergency Response Team (CERT-UA) of the attack attempt on January 17th, 2023, against the National News Agency of Ukraine (Ukrinform), has uncovered five data-wiping malware strains on the news agency’s network. CERT-UA’s update on January 27th, 2023, names CaddyWiper, ZeroWipe, SDelete, AwfulShred, and BidSwipe as the five malware strains deployed by the threat actors against Ukrinform. CERT-UA reiterates the attack against Ukrinform was only partially successful and did not disrupt operations from Ukrinform. Russian-state-sponsored threat group Sandworm is the leading suspect by CERT-UA as the organizer of the attack.

‍