topic New BugSleep malware implant deployed in MuddyWater attacks in Threats https://community.isc2.org/t5/Threats/New-BugSleep-malware-implant-deployed-in-MuddyWater-attacks/m-p/72103#M1255 <P>Hi All</P><P>&nbsp;</P><P>The Iranian-backed MuddyWater hacking group has partially switched to using a new custom-tailored malware implant to steal files and run commands on compromised systems.</P><P>Dubbed BugSleep, this new backdoor is still actively being developed and was discovered by analysts at Check Point Research while being distributed via well-crafted phishing lures.</P><P>The campaign pushes the malware via phishing emails disguised as invitations to webinars or online courses. The emails redirect the targets to archives containing malicious payloads hosted on the Egnyte secure file-sharing platform.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/new-bugsleep-malware-implant-deployed-in-muddywater-attacks/" target="_blank">https://www.bleepingcomputer.com/news/security/new-bugsleep-malware-implant-deployed-in-muddywater-attacks/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 17 Jul 2024 21:16:14 GMT Caute_cautim 2024-07-17T21:16:14Z New BugSleep malware implant deployed in MuddyWater attacks https://community.isc2.org/t5/Threats/New-BugSleep-malware-implant-deployed-in-MuddyWater-attacks/m-p/72103#M1255 <P>Hi All</P><P>&nbsp;</P><P>The Iranian-backed MuddyWater hacking group has partially switched to using a new custom-tailored malware implant to steal files and run commands on compromised systems.</P><P>Dubbed BugSleep, this new backdoor is still actively being developed and was discovered by analysts at Check Point Research while being distributed via well-crafted phishing lures.</P><P>The campaign pushes the malware via phishing emails disguised as invitations to webinars or online courses. The emails redirect the targets to archives containing malicious payloads hosted on the Egnyte secure file-sharing platform.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/new-bugsleep-malware-implant-deployed-in-muddywater-attacks/" target="_blank">https://www.bleepingcomputer.com/news/security/new-bugsleep-malware-implant-deployed-in-muddywater-attacks/</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 17 Jul 2024 21:16:14 GMT https://community.isc2.org/t5/Threats/New-BugSleep-malware-implant-deployed-in-MuddyWater-attacks/m-p/72103#M1255 Caute_cautim 2024-07-17T21:16:14Z Re: New BugSleep malware implant deployed in MuddyWater attacks https://community.isc2.org/t5/Threats/New-BugSleep-malware-implant-deployed-in-MuddyWater-attacks/m-p/72185#M1265 <P>Thanks for sharing&nbsp;<a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/809125741">@Caute_cautim</a>.</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 19 Jul 2024 08:35:44 GMT https://community.isc2.org/t5/Threats/New-BugSleep-malware-implant-deployed-in-MuddyWater-attacks/m-p/72185#M1265 Kyaw_Myo_Oo 2024-07-19T08:35:44Z