Iranian Hackers Hit 100 Government Agencies With Virus

A state-backed Iranian cyber-espionage group known as MuddyWater has launched a wave of attacks targeting more than 100 government organizations worldwide. In these operations, Iranian hackers hit 100-plus entities using the latest version of their custom surveillance tool, known as the Phoenix backdoor. The campaign highlights the group’s continued focus on intelligence gathering through stealthy and persistent methods.

Security researchers identified version 4 of Phoenix in the attacks, signaling ongoing development and refinement of the malware. Iranian hackers hit 100 government bodies by leveraging this tool, which allows long-term access to compromised networks while avoiding detection. The group reportedly focused on data exfiltration, system control, and internal network mapping.

MuddyWater remains a persistent threat due to its evolving tactics and alignment with state objectives. Officials continue to monitor the group’s activities as they pose risks to critical infrastructure and national security.

Read the full article at:
https://www.bleepingcomputer.com/news/security/iranian-hackers-targeted-over-100-govt-orgs-with-phoenix-backdoor/