Microsoft discovers new multi-malware package “GigaWiper” capable of deploying wipers and ransomware


  • Microsoft warns of ‘GigaWiper,’ a destructive malware attributed to the Iranian group CyberAv3ngers that combines several variants into one
  • It can wipe drives, encrypt files with fake ransomware extension or overwrite Windows partitions, all while spying via screenshots, VNC sessions and stealing system data.
  • The malware hides under fake OneDrive tasks and registry keys, showing both spying and sabotage capabilities without any recovery path for victims’ data.

Microsoft is warning about a new malware called GigaWiper, which can spy on users’ computers and then destroy them entirely, in a variety of ways.

It was built by mixing different malware variants into one, and it appears to be the work of Iranian state-sponsored threat actors called CyberAv3ngers. The hackers also launched a cheeky little dig at Microsoft, via the malware’s obfuscation mechanism.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top