Targeting of Israeli organizations using SysAid

Date of report

August 2022

Affiliations

MuddyWater

MuddyWater discovered a new way to utilize the Log4Shell vulnerability in attacks. The group used the Log4Shell bug in SysAid software, a commonly used IT management and help-desk tool, to access the networks of Israeli organizations.

Suspected victims

Organizations in Israel running the SysAid IT management system

Suspected state sponsor

Iran (Islamic Republic of)

Type of incident

Espionage

Target category

Private sector

Victim government reaction

Unknown

Policy response

Unknown

Suspected state sponsor response

Unknown

MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations
Microsoft: Iranian hackers still exploiting Log4j bugs against Israel

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events