GIGAWIPER is a sophisticated malware identified by Microsoft that operates as a destructive backdoor and wiper, exhibiting multiple system-level sabotage capabilities. First observed in October 2025, it is built on Go and includes features for executing standalone wipe commands, ransomware-like encryption, and maintaining command-and-control (C&C) capabilities using RabbitMQ and Redis.
It can wipe drives at the physical disk level, erase partition references, and execute various commands including taking screenshots and uploading files. The malware consolidates multiple destructive functions into a modular backdoor, expanding the threat landscape beyond just data destruction to include espionage and system control.