Muddywater Utilizes Custom Tools to Target Telecom Companies

Threat Level – Red | Vulnerability Report
Download PDF

Iranian espionage group Muddywater,targeted telecommunications companies in Egypt, Sudan, and Tanzania in November 2023. The attackers employed a diverse set of tools for this activity, including leveraging the MuddyC2Go infrastructure. Additionally, they utilized the SimpleHelp remote access tool and Venom Proxy. The attackers also deployed a custom keylogging tool along with other publicly available and living-off-the-land tools as part of their espionage efforts.

Threat Level – Red | Attack Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox