Iranian APT Hacked US Airport, Bank, Software Company
securityweekThe attacks, observed since February, show that Iranian hackers already have a presence in the networks of US organizations.
The Iranian APT MuddyWater has hacked into the networks of several organizations in the US, including an aerospace and defense contractor, Broadcom’s Symantec and Carbon Black threat hunting team reports.
The threat actor has been present in the environments of an airport, a bank, a non-governmental organization operating in the US and Canada, and a software company with a presence in Israel.
According to the Broadcom experts, the APT’s activity has continued “in recent days following US and Israeli military strikes on Iran that have sparked conflict in the region”.
The compromised software firm, an aerospace and defense contractor, also has a presence in Israel, making it a target of interest for MuddyWater hackers.
As part of the campaign, the APT deployed a new backdoor dubbed Dindoor on the ...
Copyright of this story solely belongs to securityweek . To see the full text click HERE