Enlarge (credit score: Getty Photographs)
Researchers have unearthed never-before-seen wiper malware tied to the Kremlin and an operation two years in the past that took out greater than 10,000 satellite tv for pc modems positioned primarily in Ukraine on the eve of Russia’s invasion of its neighboring nation.
AcidPour, as researchers from safety agency Sentinel One have named the brand new malware, has stark similarities to AcidRain, a wiper found in March 2022 that Viasat has confirmed was used within the assault on its modems earlier that month. Wipers are malicious purposes designed to destroy saved knowledge or render units inoperable. Viasat mentioned AcidRain was put in on greater than 10,000 Eutelsat KA-SAT modems utilized by the broadband supplier seven days previous to the March 2022 discovery of the wiper. AcidRain was put in on the units after attackers gained entry to the corporate’s non-public community.
Sentinel One, which additionally found AcidRain, mentioned on the time that the sooner wiper had sufficient technical overlaps with malware the US authorities attributed to the Russian authorities in 2018 to make it probably that AcidRain and the 2018 malware, often called VPNFilter, have been carefully linked to the identical group of builders. In flip, Sentinel One’s report Thursday noting the similarities between AcidRain and AcidPour, supplies proof that AcidPour was additionally created by builders engaged on behalf of the Kremlin.
Learn 10 remaining paragraphs | Feedback
