Iranian Hackers Target US Organizations with New Backdoor

Iranian state-sponsored threat group MuddyWater targeted multiple US organizations, including a bank, an airport, a non-profit, and the Israeli branch of a US software company, in a recent campaign. The attackers deployed a new backdoor named "Dindoor" as part of their operations. No specific dates, technical indicators, or CVE IDs were disclosed in the report. The campaign's exact impact on the affected entities remains unspecified beyond the identification of the targets. The activity aligns with MuddyWater’s known tactics, which are attributed to Iran’s Ministry of Intelligence and Security (MOIS).