Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Iran-linked APT group¬†MERCURY is behind destructive attacks on hybrid environments masquerading as a ransomware operation. The Microsoft Threat Intelligence team observed a series of destructive attacks on hybrid environments that were carried out by MuddyWater APT group (aka¬†MERCURY). Threat actors masqueraded the attacks as a standard ransomware operation. MERCURY (aka MuddyWater,¬†SeedWorm¬†and¬†TEMP.Zagros) has been active since … Continue reading Iran-linked MERCURY APT behind destructive attacks on hybrid environments