Tag

Wiper

3 briefs RSS

ESET APT Activity Report Q4 2025–Q1 2026 Highlights Various Threat Actor Campaigns

ESET's APT Activity Report for Q4 2025 and Q1 2026 highlights diverse campaigns by China, Iran, North Korea, and Russia-aligned threat actors, including espionage, supply chain compromise, and destructive attacks.

Ivanti VPN appliances +2 Lazarus Group +4 apt espionage supply-chain wiper

2r 3t 3w ago

high threat

VECT Ransomware Destroys Files Due to Encryption Flaw

2 rules 1 TTP

VECT 2.0 ransomware, a RaaS offering, permanently destroys large files due to an encryption flaw, discarding decryption nonces for files above 128 KB, rendering them unrecoverable and effectively acting as a wiper; it uses raw ChaCha20-IETF with no authentication.

ESXi +3 TeamPCP ransomware wiper raas

2r 1t Apr 28, 2026

critical threat

TeamPCP's CanisterWorm Kubernetes Wiper Targeting Iran

2 rules 1 TTP

TeamPCP's CanisterWorm is a newly identified Kubernetes wiper targeting Iranian infrastructure, indicating a politically motivated destructive attack.

TeamPCP kubernetes wiper iran canisterworm destructive-attack

2r 1t Mar 23, 2026