Find notable cyber news and cases, enriched with sources, timelines, and signals.

GigaWiper modular backdoor with wiping and espionage capabilities

Malware Activity
First reported
Last updated
Happening score
H score 22
1 unique sources, 1 articles

Summary

Hide ▲

The newly analyzed GigaWiper backdoor combines espionage and destructive wiping functions, giving operators a single implant that can control, sabotage, and erase infected systems. Microsoft said the tool also includes fake ransomware behavior and multiple destructive commands, expanding the impact of a single compromise. The finding raises concern because the malware unifies capabilities that are usually spread across separate tools. The result is a more flexible platform for covert access and system destruction.

Related Happenings

GigaWiper reuses multiple malware lineages in a unified destructive backdoor

Technical Analysis
H score22 First: 10.07.2026 18:30 Last: 10.07.2026 18:30 Sources 1

How related: In a malware analysis published on July 9 by Microsoft Security, the researchers assessed this new sophisticated tool was created by combining and reimplementing components from at least three previously separate malware families.

About this happening: Microsoft's **July 9** analysis of **GigaWiper** shows a modular backdoor that merges **espionage**, **C2**, and **destructive wiping** into one implant, widening the damage a sin...

GigaWiper / BLUERABBIT destructive Windows backdoor activity

Malware Activity
H score31 First: 09.07.2026 21:08 Last: 09.07.2026 21:08 Sources 1

About this happening: The **GigaWiper / BLUERABBIT** malware activity now combines **disk wiping**, **fake ransomware**, and **spyware backdoor** functions on **Windows**, increasing the chance that on...

Turla Kazuar modular P2P botnet

Malware Activity
H score16 First: 15.05.2026 20:10 Last: 15.05.2026 20:10 Sources 1

About this happening: **Turla** has refactored its **Kazuar** backdoor into a **modular peer-to-peer (P2P) botnet**, strengthening **stealth** and **persistent access** on compromised hosts. The redesi...

Steaelite Windows RAT with FUD and multi-function capabilities

Malware Activity
H score28 First: 27.02.2026 12:06 Last: 27.02.2026 12:06 Sources 1

About this happening: The **Steaelite** Windows RAT is being marketed as a **fully undetectable** tool for **Windows 10 and 11**, giving operators browser-based control over infected machines and enabl...

Timeline

  1. 10.07.2026 18:30 2 articles · 1h ago

    GigaWiper modular backdoor with wiping and espionage capabilities

    Initial Disclosure

    Microsoft Threat Intelligence detected **GigaWiper** in **October 2025** while compromised environments were being wiped. Early analysis showed both standalone wiper binaries and larger backdoor builds with destructive and espionage functions.

    Show sources