MuddyWater targets African telecommunications companies

20 December 2023

Telecommunications firms in Egypt, Tanzania, and Sudan have been subjected to attacks by Iranian state-sponsored threat operation MuddyWater last month, reports The Record, a news site by cybersecurity firm Recorded Future. Several tools have been leveraged by MuddyWater to facilitate the attacks, including the new MuddyC2Go toolset and its PowerShell launcher for malware deployment; the SimpleHelp remote management software for continuous access to compromised devices and command execution; and the Venom Proxy software for managing intranet-connected devices, according to a report from Symantec.

Source: SC Magazine

Date:

20 December 2023

Categorie(s):

NEWS

Tag(s):

IT, MuddyWater, News, Threat Intelligence

Smoke and (screen) mirrors: A strange signed backdoor3 May 2024
Kaspersky accused of helping Russia develop military drone systems3 May 2024
Attackers evade detection by leveraging Microsoft Graph API3 May 2024
Microsoft details broad plan to enhance its cybersecurity practices3 May 2024
You get a passkey, you get a passkey, everyone should get a passkey3 May 2024