Security News > 2024 > July > New BugSleep malware implant deployed in MuddyWater attacks
The Iranian-backed MuddyWatter hacking group has partially switched to using a new custom-tailored malware implant to steal files and run commands on compromised systems.
"We discovered several versions of the malware being distributed, with differences between each version showing improvements and bug fixes," Check Point said.
Attacks using this new malware focus on a wide range of targets worldwide, from government organizations and municipalities to airlines and media outlets, with targeting Israel and some in Turkey, Saudi Arabia, India, and Portugal.
One month later, U.S. and U.K. cybersecurity and law enforcement agencies exposed additional MuddyWater malware, a new Python backdoor dubbed Small Sieve deployed to maintain persistence and evade detection in compromised networks.
New BiBi Wiper version also destroys the disk partition table.
Russian hackers use new Lunar malware to breach a European govt's agencies.
News URL
Related news
- DarkGate Malware Replaces AutoIt with AutoHotkey in Latest Cyber Attacks (source)
- Hackers Use MS Excel Macro to Launch Multi-Stage Malware Attack in Ukraine (source)
- More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack (source)
- Pakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks (source)
- FakeBat Loader Malware Spreads Widely Through Drive-by Download Attacks (source)
- Hackers attack HFS servers to drop malware and Monero miners (source)
- GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks (source)
- ViperSoftX Malware Disguises as eBooks on Torrents to Spread Stealthy Attacks (source)
- Windows MSHTML zero-day used in malware attacks for over a year (source)
- PHP Vulnerability Exploited to Spread Malware and Launch DDoS Attacks (source)