Microsoft discovers new multi-malware package ‘GigaWiper’ capable of deploying wipers and ransomware


  • Microsoft warns of “GigaWiper,” a destructive malware attributed to the Iranian group CyberAv3ngers that combines several variants into one
  • It can erase drives, encrypt files with a fake ransomware extension or overwrite Windows partitions, while also spying via screenshots, VNC sessions and system data theft
  • The malware hides under fake OneDrive tasks and registry keys and displays both spying and sabotage capabilities with no recovery path for victims’ data

Microsoft is warning about a new piece of malware called GigaWiper, which can spy on people’s computers and then completely destroy them in various ways.

It was built by mixing different malware variants into one, and appears to be the work of Iranian state-sponsored threat actors called CyberAv3ngers. The hackers also took a cheeky dig at Microsoft through the malware’s obfuscation mechanism.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top