
New Lotus Data-Wiper Malware Targets Venezuelan Energy and Utility Firms
Security
📌 A previously undocumented data-wiping malware named Lotus was deployed in 2023 against energy and utility organizations in Venezuela. The attacks specifically targeted critical infrastructure sectors, though no exact victim names or additional technical indicators were disclosed. The malware functions as a destructive tool, erasing data rather than exfiltrating it, but no further details on its propagation method or payload delivery were provided. No CVE IDs or attribution to a specific threat actor were mentioned in the report. The discovery highlights a focused campaign against Venezuelan industrial systems, though the full scope of the impact remains unclear.