Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2024/04/12 9:49 a.m.35 views

Iranian MuddyWater Hackers Adopt New C2 Tool 'DarkBeatC2' in Latest Campaign

The Iranian threat actor known as MuddyWater has been attributed to a new command-and-control C2 infrastructure called DarkBeatC2, becoming the latest such tool in its arsenal after SimpleHarm, MuddyC3, PhonyC2, and MuddyC2Go. "While occasionally switching to a new remote administration tool or...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/29 4:1 p.m.34 views

From MuddyC3 to PhonyC2: Iran's MuddyWater Evolves with a New Cyber Weapon

The Iranian state-sponsored group dubbed MuddyWater has been attributed to a previously unseen command-and-control C2 framework called PhonyC2 that's been put to use by the actor since 2021. Evidence shows that the custom made, actively developed framework has been leveraged in the February 2023...

7.7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/04/07 4:0 p.m.81 views

MERCURY and DEV-1084: Destructive attack on hybrid environment

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm and DEV-1084 is now tracked as Storm-1084. To learn more about the new taxonomy represents the origin, unique traits,...

9.3CVSS10.2AI score0.99999EPSS
Exploits351
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/07 4:0 p.m.211 views

MERCURY and DEV-1084: Destructive attack on hybrid environment

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm and DEV-1084 is now tracked as Storm-1084. To learn more about the new taxonomy represents the origin, unique traits,...

9.3CVSS10.2AI score0.99999EPSS
Exploits351
Rows per page
Query Builder