MuddyWater attacks against Israel involve novel C2 framework

10 November 2023

Attacks deployed by Iranian state-backed threat operation MuddyWater against Israel saw the utilization of the new MuddyC2Go command-and-control framework, which replaced the PhonyC2 custom platform following the exposure of its source code, reports The Hacker News. While MuddyWater continues to commence intrusions with spearphishing emails, the group has transitioned to using password-protected archives for deploying an executable, rather than a remote administration tool, which included a PowerShell script enabling automated linking to the MuddyC2Go server, according to a Deep Instinct report.

Source: SC Magazine

Date:

10 November 2023

Categorie(s):

NEWS

Tag(s):

C2, Israel, IT, MuddyWater, News

Microsoft, Google widen passkey support for its users3 May 2024
Cyble Vision X covers the entire breach lifecycle3 May 2024
Leveraging Big Data for Enhanced Cybersecurity Solutions3 May 2024
BlackBerry CylanceMDR improves cybersecurity defensive strategy3 May 2024
New Guide Explains How to Eliminate the Risk of Shadow SaaS and Protect Corporate Data3 May 2024