A significant development in the threat landscape involves the Anubis ransomware family. While previously known primarily for its encryption tactics, which rendered data inaccessible, this threat has evolved considerably. The latest observed versions of Anubis now incorporate a wiper module.
This addition fundamentally changes the nature of the attack. Instead of simply encrypting files with the potential for recovery upon payment, the wiper function is designed for total data destruction. This means that even if a victim were to pay the demanded ransom and receive a decryption key, the data may have already been permanently wiped from the system, rendering recovery impossible.
The inclusion of this destructive wiper feature elevates Anubis from a standard data hostage situation to a tool focused on maximum damage and irreversible data loss. This evolution highlights a disturbing trend towards more destructive cyber threats, particularly those targeting critical information and infrastructure.
Source: https://www.bleepingcomputer.com/news/security/anubis-ransomware-adds-wiper-to-destroy-files-beyond-recovery/
