MuddyWater’ APT is suspected of using a strain of ransomware called Thanos in several campaigns since September. The group is also known as EMP.Zagros, Static Kitten, Mercury and Seedworm. The attacks on Israeli organizations are part of a wider campaign that is active across several nations, researchers say. The latest MuddyWater campaign appears to be using a malicious loader named PowGoop – a fake Google Update mechanism – to deliver the ransomware, the report says. Security firm ClearSky: “We assess that the group is attempting to employ destructive attacks””]
Source: https://www.govinfosecurity.com/iranian-hacking-group-suspected-deploying-ransomware-a-15190

