Wiper Malware

A wiper is malware designed for destruction rather than profit. It overwrites files, disk sectors, partition tables, or firmware so that affected systems become unbootable and data unrecoverable. Some wipers masquerade as ransomware, displaying a ransom note even though no decryption key exists. Wipers are typical of state-sponsored sabotage, hacktivism and wartime cyber operations, and have been used heavily against Ukrainian infrastructure since 2022. Defences emphasize tested offline backups, immutable storage, network segmentation, robust EDR/XDR, restricting admin tools (PsExec, Group Policy), and rapid containment of suspected destructive incidents.