The Russia-aligned Sandworm group has intensified its attacks on Ukrainian entities by deploying sophisticated wiper malware, particularly aimed at government, energy, logistics, and agriculture sectors. This shift marks a strategic change from espionage to outright destruction, intending to destabilize Ukraine economically during conflicts. Security researchers have pointed out that their assault involves using tools like ZEROLOT and Sting, which not only erase data permanently but also compromise system integrity.
The malware exploits network vulnerabilities through spearphishing and credential theft, executing routines that severely damage systems by overwriting essential files. This approach ensures that recovery is nearly impossible without offline backups. Additionally, the wipers incorporate timing mechanisms to maximize damage by delaying execution until they have spread throughout the network. Such tactics highlight a dangerous evolution in cyber warfare, posing significant threats to national security and economic stability in Ukraine.
👉 Pročitaj original: Cyber Security News
