ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
CRITICAL Cybersecurity

GigaWiper Windows backdoor merges disk wiping, fake ransomware, and spyware

Source headline: New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware

Threat level Critical
Signal strength 85/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

Microsoft dismantled the GigaWiper Windows backdoor and described its inner design. The malware is assembled from multiple older destructive components that operators can run as commands. It can wipe the whole disk or overwrite the Windows drive to prevent recovery. It can also deploy a fake ransomware routine that scrambles files using a key it never stores. Victims should treat any execution as destructive, ensure reliable offline backups, and validate detections for related behaviors.

Recommended Action

Prioritize immediate review, validate exposure, and patch or mitigate affected systems.

Topics

#backdoor #ransomware #windows #spyware #disk-wiping #gigawiper
Original reporting The Hacker News New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
Open original source