Login Subscribe

Malware & Ransomware

CanisterWorm Wiper Strikes Iranian Critical Infrastructure

Security researchers have confirmed that the CanisterWorm wiper has been actively targeting Iranian critical infrastructure. The payload uses a multi‑stage infection chain: initial reconnaissance, credential harvesting, lateral movement, and finally a destructive payload that overwrites files and disables system services. The wiper is engineered to evade sandbox analysis and can spread across Windows domains without user interaction.

The attack has already caused data loss and service outages at several high‑value sites, prompting national CERTs to issue alerts and share indicators of compromise. Defenders must update detection rules, monitor for the disclosed IOCs, and enforce strict credential hygiene to prevent lateral movement, as similar tactics could be repurposed against other sectors worldwide.

Categories: Malware & Ransomware, Threat Intelligence

Source: Read original article

Read next

AI Travel‑Hacking Toolkit on GitHub Sparks Fraud Risks for Rewards Programs

AI Travel‑Hacking Toolkit on GitHub Sparks Fraud Risks for Rewards Programs

Collection BriefAI SecurityGITHUB.COM AI Travel‑Hacking Toolkit on GitHub Sparks Fraud Risks for Rewards Programs Why it mattersAI tools that facilitate large‑scale data scraping and automation can be weaponized for financial fraud; security professionals should assess risk, enforce usage policies, and collaborate with platforms to detect abusive patterns.

OpenClaw AI Agents Weaponized: Reverse Shells and Adaptive Cognitive Rootkits Spread Fast

OpenClaw AI Agents Weaponized: Reverse Shells and Adaptive Cognitive Rootkits Spread Fast

Collection BriefAI SecurityBLOG.VIRUSTOTAL.COM OpenClaw AI Agents Weaponized: Reverse Shells and Adaptive Cognitive Rootkits Spread Fast Why it mattersThe weaponization of AI agents expands the attack surface, enabling automated, adaptive payload delivery; security teams must incorporate AI‑aware detection strategies and monitor abnormal agent behavior to prevent large‑scale

CanisterWorm Wiper Strikes Iranian Networks, Erasing Critical Data

Collection BriefMalwareKREBSONSECURITY.COM CanisterWorm Wiper Strikes Iranian Networks, Erasing Critical Data Why it mattersWiper malware escalates the impact of cyber‑attacks from espionage to outright sabotage, compelling regional operators to harden backups, implement immutable storage, and monitor for early infection signatures. A new destructive malware family dubbed CanisterWorm has been

Comments ()