MalwareBleeping Computer
9.0 — CRITICAL
New Lotus data wiper used against Venezuelan energy, utility firms
A previously undocumented data-wiping malware dubbed Lotus was used last year in targeted attacks against energy and utilities organizations in Venezuela. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
A previously undocumented data-wiping malware, Lotus, was used in targeted attacks against energy and utilities organizations in Venezuela, causing irreparable damage by overwriting physical drives and eliminating recovery options.
⚙️Technical Details
💥Impact Assessment
Severity: Critical
Who Is at Risk
Venezuelan energy and utility firms, including the state-owned oil company PDVSA
🛡️Recommended Actions
1Monitor for NETLOGON share changes, UI0Detect manipulation, mass account changes, and disabling of network interfaces
2Unexpected usage of 'diskpart,' 'robocopy,' and 'fsutil' should be flagged as a red flag
3Regular offline backups with frequently validated restorability are recommended to prevent similar attacks
📦Affected Products
Product Name: WindowsAffected Software: True
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.