Iran’s MuddyWater Hackers Target US Firms with New Dindoor Backdoor

Researchers say Iran’s MuddyWater hackers targeted US companies and an Israeli software firm’s department in a cyber campaign using the Dindoor malware – All this amid the ongoing conflict.

Cyber security researchers at Threat Hunter Team say a long-running Iranian cyber espionage group has breached several U.S. organizations in a campaign that began earlier this year and has continued even as geopolitical tensions escalate.

The activity has been linked to MuddyWater, an Iran-aligned advanced persistent threat group believed to operate under the country’s Ministry of Intelligence and Security. The hackers are known for cyber-espionage operations that focus on gaining persistent access to networks and collecting sensitive data from government and private sector targets.

The campaign began in early February 2026

Researchers first observed the latest wave of activity in early February, when attackers began infiltrating networks belonging to several U.S. organizations across different sectors. Investigators say ...