https://www.huntress.com/blog/muddywater-attack-chain
Unmasking an Attack Chain of MuddyWater | Huntress
Huntress has identified and detailed a full timeline of an intrusion in a customer environment that aligns with what others have identified as MuddyWater...
unmaskingattackchainmuddywaterhuntress
https://hackread.com/tag/MuddyWater/
MuddyWater
muddywater
https://www.trendmicro.com/de_de/research/18/c/campaign-possibly-connected-muddywater-surfaces-middle-east-central-asia.html
Potential MuddyWater Campaign Seen in the Middle East | Trend Micro (DE)
Mar 12, 2018 - We discovered a new campaign targeting organizations in Turkey, Pakistan and Tajikistan that has some similarities with an earlier campaign named MuddyWater,...
in the middle easttrend micropotentialmuddywatercampaign
https://www.arabnews.com/tags/muddywater
MuddyWater | Arab News
muddywaterarabnews
https://www.trendmicro.com/es_mx/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (MX)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://thehackernews.com/2025/10/iran-linked-muddywater-targets-100.html?ref=blog.netmanageit.com
Iran-Linked MuddyWater Targets 100+ Organizations in Global Espionage Campaign
Iran-linked MuddyWater used a compromised email to spread Phoenix malware targeting 100+ MENA government entities
iranlinkedmuddywatertargets100
https://www.trendmicro.com/de_de/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (DE)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://thehackernews.com/2023/06/from-muddyc3-to-phonyc2-irans.html
From MuddyC3 to PhonyC2: Iran's MuddyWater Evolves with a New Cyber Weapon
Iranian state-sponsored group, MuddyWater, deploys new PhonyC2 framework in targeted cyber attacks
https://www.trendmicro.com/es_es/research/18/c/campaign-possibly-connected-muddywater-surfaces-middle-east-central-asia.html
Potential MuddyWater Campaign Seen in the Middle East | Trend Micro (ES)
Mar 12, 2018 - We discovered a new campaign targeting organizations in Turkey, Pakistan and Tajikistan that has some similarities with an earlier campaign named MuddyWater,...
in the middle easttrend micropotentialmuddywatercampaign
https://www.trendmicro.com/tr_tr/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (TR)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://www.trendmicro.com/es_es/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (ES)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://thehackernews.com/2022/01/us-cyber-command-links-muddywater.html
US Cyber Command Links 'MuddyWater' Hacking Group to Iranian Intelligence
The U.S. Cyber Command has officially confirmed that the MuddyWater hacking group has close ties to the Iranian intelligence apparatus.
us cyber commandhacking grouplinksmuddywateriranian
https://www.trendmicro.com/ko_kr/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (KR)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://www.trendmicro.com/it_it/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (IT)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://www.trendmicro.com/en_gb/research/18/c/campaign-possibly-connected-muddywater-surfaces-middle-east-central-asia.html
Potential MuddyWater Campaign Seen in the Middle East | Trend Micro (UK)
Mar 12, 2018 - We discovered a new campaign targeting organizations in Turkey, Pakistan and Tajikistan that has some similarities with an earlier campaign named MuddyWater,...
in the middle easttrend micropotentialmuddywatercampaign
https://www.infosecurity-magazine.com/news/muddywater-compromised-mailboxes/
MuddyWater Uses Compromised Mailboxes in Global Phishing Campaign - Infosecurity Magazine
Oct 22, 2025 - Group-IB has uncovered a phishing campaign by Iran-linked MuddyWater, exploiting compromised emails for foreign intelligence
phishing campaignmuddywaterusescompromisedmailboxes
https://cyberscoop.com/tag/muddywater/
MuddyWater Archives | CyberScoop
muddywaterarchivescyberscoop
https://thehackernews.com/2026/05/muddywater-uses-microsoft-teams-to.html
MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
MuddyWater used Teams phishing in 2026 to steal credentials, enabling stealthy data exfiltration and persistence without encryption.
microsoft teams
https://securityaffairs.com/126664/apt/muddywater-linked-to-iran-mois.html
USCYBERCOM: MuddyWater APT is linked to Iran's MOIS intelligence
Jan 13, 2022 - USCYBERCOM has officially linked the Iran-linked MuddyWater APT group to Iran's Ministry of Intelligence and Security (MOIS).
uscybercommuddywateraptlinkediran
https://hashnode.com/posts/muddywater-hackers-use-chaos-ransomware-as-a-decoy-in-attacks/69fb77479cd4df9e8e3d5d61
Discussion on "MuddyWater hackers use Chaos ransomware as a decoy in attacks" | Hashnode
Discussion on "MuddyWater hackers use Chaos ransomware as a decoy in attacks". The MuddyWater Iranian hackers disguised their operations as a Chaos ransomware...
https://www.trendmicro.com/pl_pl/research/21/c/earth-vetala---muddywater-continues-to-target-organizations-in-t.html
Earth Vetala MuddyWater Continues to Target Organizations in the Middle East | Trend Micro (PL)
Mar 5, 2021 - Trend Micro researchers recently detected activity suspected to be from MuddyWater. This campaign targets various organizations in the Middle East and...
in the middle east
https://www.digitaljournal.com/tech-science/unclear-data-patterns-new-risks-from-the-muddywater-hackers-revealed/article
Unclear data patterns? New risks from the MuddyWater hackers revealed - Digital Journal
Dec 25, 2022 - The use of HTML attachments is not new, but Cofense Intelligence has observed some notable spikes in HTML attachment phishing recently.
data patternsfrom the
https://securityaffairs.com/185244/apt/muddywater-strikes-israel-with-advanced-muddyviper-malware.html
MuddyWater strikes Israel with advanced MuddyViper malware
Dec 2, 2025 - Iran-linked threat actor MuddyWater targeted multiple Israeli sectors with a new MuddyViper backdoor in recent attacks.
muddywaterstrikesisraeladvancedmalware
https://www.muddywaterrvcamping.com/
Muddywater RV Camping
Muddywater RV Camping
muddywaterrvcamping
https://www.trendmicro.com/pl_pl/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (PL)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor
https://www.trendmicro.com/en/research/18/c/campaign-possibly-connected-muddywater-surfaces-middle-east-central-asia.html
Potential MuddyWater Campaign Seen in the Middle East | Trend Micro
Mar 12, 2018 - We discovered a new campaign targeting organizations in Turkey, Pakistan and Tajikistan that has some similarities with an earlier campaign named MuddyWater,...
in the middle eastpotentialmuddywatercampaignseen
https://www.trendmicro.com/en_gb/research/18/k/new-powershell-based-backdoor-found-in-turkey-strikingly-similar-to-muddywater-tools.html
New PowerShell-based Backdoor, MuddyWater Similarities | Trend Micro (UK)
Nov 30, 2018 - MuddyWater is a well-known threat actor group that has been active since 2017. They have regularly targeted various organizations in Middle East and Central...
trend micronewpowershellbasedbackdoor