As reported by Bleeping Computer, a new data-wiping malware named Lotus was recently identified, used in targeted attacks against energy and utilities organizations in Venezuela.The malware, uploaded in mid-December from a machine within Venezuela, employs two batch scripts to weaken system defenses and disrupt operations before deploying the final payload, according to an analysis by Kaspersky. These scripts disable services, disable user accounts, log off sessions, and disconnect network interfaces. The Lotus wiper then overwrites physical drives, deletes files, and removes recovery mechanisms, rendering compromised systems unrecoverable.Researchers noted that the timing of these attacks aligns with geopolitical tensions in the region, occurring around the same time a cyberattack disrupted Venezuela’s state-owned oil company, Petróleos de Venezuela (PDVSA).Source:Bleeping Computer
More
Popular articles
Featured
Newsletter
Subscribe to get the latest news, offers and special announcements.