#phoenix-backdoor

[ follow ]
#muddywater-apt34 #phishingmacros #browser-credential-theft #muddywater #spearphishing
Information security
fromTheregister
1 week ago

Iran's MuddyWater spies wade into 100+ government networks

Iran-linked MuddyWater breached over 100 MENA government and diplomatic entities using phishing, weaponized Word macros, FakeUpdate loader, and Phoenix backdoor.
Information security
fromThe Hacker News
1 week ago

Iran-Linked MuddyWater Targets 100+ Organisations in Global Espionage Campaign

MuddyWater used a NordVPN-accessed compromised email to spread the Phoenix backdoor via macro-based Word documents targeting MENA diplomatic and government entities.
[ Load more ]