MuddyWater: From Canaries to Turkeys - Evolution of APT Campaigns 2021-2022
Offered By: NorthSec via YouTube
Course Description
Overview
Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the evolution and tactics of the Iranian-based threat actor MuddyWater in this 27-minute conference talk from NorthSec 2022. Delve into three distinct campaigns targeting Turkish governmental organizations, Armenia, Pakistan, and countries in the Arabian peninsula. Examine the group's use of Canarytokens for payload activation, mixed-stage payload delivery methods, and the introduction of a new payload builder. Analyze the group's flexibility in employing various techniques, including VBA macros, double extension executables, and WSF-based RATs. Gain insights into MuddyWater's timeline, tool capabilities, and the possibility of it being a collective of groups sharing tools and techniques. Understand the implications of the U.S. Cyber Command's attribution of MuddyWater to Iran's Ministry of Intelligence Services (MOIS) and how it differs from previous beliefs.
Syllabus
NSEC 2022 - Asheer Malhotra - MuddyWater: From Canaries to Turkeys
Taught by
NorthSec
Related Courses
Incident Response and Recovery(ISC)² via Coursera Fundamentos de Ciberseguridad: un enfoque práctico
Inter-American Development Bank via edX FIREWALLS & THREAT MANAGEMENT
Foothill College via California Community Colleges System Ciberseguridad: ataques y contramedidas
Universidad Rey Juan Carlos via Independent Palo Alto Networks Cybersecurity Fundamentals: 1 Cybersecurity Contexts
LinkedIn Learning