Microsoft reports a newly identified “GigaWiper” multi-malware package that merges espionage and destructive capabilities into a single modular backdoor. Across coverage, the threat is described as able to perform covert activity on infected systems while also carrying out system-level sabotage. Microsoft and other outlets say the package combines multiple malware components, including wiper functionality intended to damage or destroy data and reduce system recoverability.

SecurityWeek and The Register report that the destructive behavior includes a standalone wiper and ransomware-related encryption routines, and that the tool supports wiping in more than one pass. TechRadar and Infosecurity Magazine add that the malware can also spy on users as part of its espionage behavior.

The Register notes Microsoft characterizes the malware as combining at least three malware families into one toolset, rather than operating as a single payload. Overall, sources agree the primary concern is the combination of stealthy access and multiple mechanisms for irreversibly damaging systems or encrypting data, increasing potential impact during an intrusion.