ShellCodeX Intelligence Brief
CRITICAL
Cybersecurity
GigaWiper Windows backdoor merges disk wiping, fake ransomware, and spyware
Source headline: New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
Threat level
Critical
Signal strength
85/100
Source confidence
1 source
Published
2 hours ago
Intelligence Summary
Microsoft dismantled the GigaWiper Windows backdoor and described its inner design. The malware is assembled from multiple older destructive components that operators can run as commands. It can wipe the whole disk or overwrite the Windows drive to prevent recovery. It can also deploy a fake ransomware routine that scrambles files using a key it never stores. Victims should treat any execution as destructive, ensure reliable offline backups, and validate detections for related behaviors.
Recommended Action
Prioritize immediate review, validate exposure, and patch or mitigate affected systems.
Topics
Original reporting
The Hacker News
New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
Open original source