Targeting of Israeli organizations using SysAid
Date of report
  • August 2022
Affiliations
MuddyWater discovered a new way to utilize the Log4Shell vulnerability in attacks. The group used the Log4Shell bug in SysAid software, a commonly used IT management and help-desk tool, to access the networks of Israeli organizations.
Suspected victims
  • Organizations in Israel running the SysAid IT management system
Suspected state sponsor
  • Iran (Islamic Republic of)
Type of incident
  • Espionage
Target category
  • Private sector
Victim government reaction
  • Unknown
Policy response
Suspected state sponsor response