GeneralIran-Linked Hackers Target Middle East Targets

Iran-Linked Hackers Target Middle East Targets

-

A hacker group linked to the Iranian regime has targeted organizations active in various Middle Eastern countries, including Israel, in a new cyber campaign.

According to research by the cybersecurity company Check Point, the hacker group known as MuddyWater has attacked Azerbaijan, Portugal, Turkey, Saudi Arabia, and India, in addition to Israel, using a new proprietary malware.

This malware allows hackers to remotely execute commands on systems and transfer files between infected devices and servers.

According to cybersecurity researchers, despite its low technical quality, the MuddyWater malware is continually being developed and improved by hackers.

Hackers have sent this malware to their victims through phishing emails.

Check Point experts have identified government organizations, municipalities, media outlets, and travel agencies as the targets of these attacks.

Since the recent campaign was identified in February 2024, more than 50 phishing emails have been sent to hundreds of recipients.

Simultaneously, the cybersecurity company Sequoia reported a similar increase in attacks by the MuddyWater group on various institutions.

Their investigations show that Iranian regime hackers have targeted Azerbaijan, Israel, Jordan, Turkey, and Saudi Arabia with cyberattacks in recent months.

Another finding of this investigation is a change in the method of sending malicious links to attack victims.

In their recent campaign, hackers placed the malicious links in PDF files attached to the emails instead of directly in the body of the phishing emails.

International organizations, including the United States Cybersecurity and Infrastructure Security Agency, have attributed the MuddyWater group to the Iranian Ministry of Intelligence.

This group is also known by other names, including APT34 and OilRig.

In recent years, MuddyWater has focused on cyber espionage against private and government institutions in the Middle East and Western countries.

In November 2023, just a few weeks after the start of the Hamas-Israel war, two Israeli entities were targeted by this group.

In that attack, Iranian government hackers also used phishing emails and social engineering techniques to deceive their victims.

Latest news

Protests Expand Across Iranian Cities, From Retirees and Workers to Students and Bakers

As the livelihood crisis, inflation, rising prices, and economic discontent continued to deepen, cities across Iran witnessed protests and...

IRGC Announces Closure of Strait of Hormuz After Firing on a Ship

While the United States had demanded that the Iranian regime confirm that the Strait of Hormuz would remain open,...

Third Round of U.S. Strikes Against Iran’s Regime After IRGC Closes Strait Of Hormuz

The United States Central Command (CENTCOM) announced that U.S. forces have launched the third round of strikes against the...

Protest Gatherings by Retirees and Steel Workers in Iran

On Saturday, July 11, a group of buyers holding purchase vouchers for vehicles from the Iranian automaker Saipa gathered...

U.S. Treasury Targets Khamenei-Linked Financial Network

The U.S. Department of the Treasury sanctioned Ali Ansari, an individual linked to a network of exchange houses and...

Sharp Increase in Bread Prices in Iran

For years in Iran, it was commonly said that even if people could no longer afford meat, chicken, dairy...

Must read

Bahrain and Iran trade accusations at U.N. rights forum

Reuters: Bahrain accused Shi'ite Iran on Thursday of fomenting...

Iraq Protest Sends Shockwaves in the Iranian Market

By Pooya Stone As the price of the dollar...

You might also likeRELATED
Recommended to you