Updated on 2022-12-07: Fantasy Wiper Used in Attacks Against Diamond Industry and Others
While researchers at ESET were analyzing a supply chain attack affecting Israeli software developer, they detected a wiper being used by the Agrius APT group. The wiper, Fantasy, and its execution tool, known as Sandals, were used after Agrius gained access to other networks through the supply chain attack, which targeted software used in the diamond industry.
Note
- If one is vulnerable to ransomware, a risk to which far too many are exposed, then one is also vulnerable to destruction or even malicious modification of one’s data. Implement strong authentication, end-to-end application layer encryption or a structured network, and least privilege access control, the essence of a “zero trust” strategy.
Read more in
- Fantasy – a new Agrius wiper deployed through a supply‑chain attack
- Agrius Iranian APT Group Cuts Into Diamond Industry
Overview
Iranian government-sponsored Agrius APT gang reportedly targeted diamond companies in Hong Kong, South Africa, and Israel with the Fantasy wiper. Read more: Iranian hackers accused of targeting diamond industry with wiper malware