"New Report Reveals NikoWiper Malware That Targeted Ukraine Energy Sector"

The Russia-affiliated Sandworm used yet another wiper malware strain named NikoWiper as part of an attack in October 2022 targeting an energy sector company in Ukraine. ESET disclosed that the NikoWiper is built on SDelete, a command line utility from Microsoft used to securely delete files. The cybersecurity firm stated that the attacks corresponded with Russian missile strikes against the Ukrainian energy infrastructure, indicating overlaps. The reveal comes just days after ESET linked Sandworm to SwiftSlicer, a Golang-based data wiper that was deployed against an undisclosed Ukrainian organization on January 25, 2023. The Advanced Persistent Threat (APT) group associated with Russia's foreign military intelligence agency GRU was also implicated in a partially successful attack against the national news outlet Ukrinform, using as many as five wipers on compromised machines. This article continues to discuss findings surrounding the NikoWiper.

THN reports "New Report Reveals NikoWiper Malware That Targeted Ukraine Energy Sector"