Lucene search
K

7 matches found

The Hacker News
The Hacker News
added 2025/12/02 1:37 p.m.5 views

Iran-Linked Hackers Hit Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks

Israeli entities spanning academia, engineering, local government, manufacturing, technology, transportation, and utilities sectors have emerged as the target of a new set of attacks undertaken by Iranian nation-state actors that have delivered a previously undocumented backdoor called MuddyViper...

6.1AI score
Exploits0
HackRead
HackRead
added 2023/11/02 7:3 p.m.25 views

Iran’s MuddyWater Group Targets Israelis with Fake Memo Spear-Phishing

By Deeba Ahmed MuddyWater aka Mango Sandstorm and Static Kitten is a cyberespionage group that's believed to be active since 2017. This is a post from HackRead.com Read the original post: Irans MuddyWater Group Targets Israelis with Fake Memo Spear-Phishing...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/02 9:21 a.m.37 views

Iran's MuddyWater Targets Israel in New Spear-Phishing Cyber Campaign

The Iranian nation-state actor known as MuddyWater has been linked to a new spear-phishing campaign targeting two Israeli entities to ultimately deploy a legitimate remote administration tool from N-able called Advanced Monitoring Agent. Cybersecurity firm Deep Instinct, which disclosed details o...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/29 4:1 p.m.3 views

From MuddyC3 to PhonyC2: Iran's MuddyWater Evolves with a New Cyber Weapon

The Iranian state-sponsored group dubbed MuddyWater has been attributed to a previously unseen command-and-control C2 framework called PhonyC2 that's been put to use by the actor since 2021. Evidence shows that the custom made, actively developed framework has been leveraged in the February 2023...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/09 8:53 a.m.3 views

Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability

Iranian nation-state groups have now joined financially motivated actors in actively exploiting a critical flaw in PaperCut print management software, Microsoft disclosed over the weekend. The tech giant's threat intelligence team said it observed both Mango Sandstorm Mercury and Mint Sandstorm...

9.8CVSS7.4AI score0.99999EPSS
Exploits24
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/07 4:0 p.m.211 views

MERCURY and DEV-1084: Destructive attack on hybrid environment

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm and DEV-1084 is now tracked as Storm-1084. To learn more about the new taxonomy represents the origin, unique traits,...

9.3CVSS10.2AI score0.99999EPSS
Exploits347
Microsoft Secure
Microsoft Secure
added 2023/04/07 4:0 p.m.80 views

MERCURY and DEV-1084: Destructive attack on hybrid environment

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm and DEV-1084 is now tracked as Storm-1084. To learn more about the new taxonomy represents the origin, unique traits,...

9.3CVSS10.2AI score0.99999EPSS
Exploits347
Rows per page
Query Builder