AcidRain Malware Shuts Down Thousands of Modems in Ukraine

Security Intelligence -

AcidRain Malware Shuts Down Thousands of Modems in Ukraine Home&nbsp/ News

Share

On Thursday, February 24, a cyber attack rendered Viasat KA-SAT modems inoperable in Ukraine, according to a recent Viasat report. Collateral damage from this attack also deactivated the remote monitoring or control of 5,800 Enercon wind turbines in Germany. 

The cause of the attack was allegedly a newly discovered data wiper malware that wipes routers and modems. Dubbed AcidRain, the malware was deployed to target the KA-SAT satellite broadband service to wipe SATCOM modems. This incident affected thousands of modems in Ukraine and tens of thousands more across Europe.

What Is Wiper Malware?

When threat actors launch wiper malware attacks, they often aren’t asking for ransom. Instead, wiper malware leads to the destruction or wiping of data. For example, the Shamoon variant struck Saudi Aramco and other Middle Eastern oil companies between 2012 and 2016. Shamoon breached computers and destroyed over 30,000 hard drives using a direct drive access driver called RawDisk. 

The Shamoon wiper spreads itself through shared network disks.

Read More: https://securityintelligence.com/news/acidrain-malware-modems-ukraine-germany/