Russian hacker group Sandworm has launched multiple data-wiping malware attacks in Ukraine’s crucial sectors, including government, education, and grain exports. These destructive operations aim to sabotage Ukraine’s economy and infrastructure, highlighting the ongoing threat from state-sponsored actors. #Sandworm #APT44 #Ukraine #DataWiper #GrainSector
Keypoints
- Sandworm has deployed various data-wiping malware families targeting Ukraine since April 2025.
- The attacks focus on Ukraine’s government, energy, logistics, and especially its grain sector.
- Data wipers like ZeroLot and Sting are used to destroy digital information without recovery options.
- Attackers aim to weaken Ukraine’s war economy by disrupting grain exports, a vital revenue source.
- Preventative measures include offline data backups, updated software, and enhanced intrusion detection systems.