Date of report
- February 2022
Affiliations
Russian threat actors targeted computer systems in Ukraine, Latvia, and Lithuania with a HermeticWiper malware attack. The malware was aimed at Windows devices, corrupting systems’ master boot records, displaying signs of ransomware as a decoy, and destroying stored data.
Suspected victims
- Ukrainian, Latvian, and Lithuanian computer systems owned by banks and government contractors, as well as systems used by the defense, aviation, and IT sectors.
Suspected state sponsor
- Russian Federation
Type of incident
- Data destruction
Target category
- Government
- Private sector
Victim government reaction
- Unknown