The Iranian threat actor known as MuddyWater is continuing its time-tested tradition of relying on legitimate remote administration tools to commandeer targeted systems.
While the nation-state group has previously employed ScreenConnect, RemoteUtilities, and Syncro , a new analysis from Group-IB has revealed the adversary's use of the SimpleHelp remote support software in June 2022.
Publisher: The Hacker News
Author: https www facebook com thehackernews
Twitter: @TheHackersNews
Reference: (Read more) Visit Source
Happening on Twitter
Iranian MuddyWater hacker group has been found using the legitimate SimpleHelp remote support #software to maintain… https://t.co/3crCqFCDeF TheHackersNews (from The Internet) Tue Apr 18 09:06:26 +0000 2023
Wave of Cyber Attacks on Israel: Russians Join Iranian Hackers https://t.co/uLQX3QoAF1 Nevzlin (from Israel) Tue Apr 18 09:04:05 +0000 2023
No comments:
Post a Comment