BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

MuddyWater’s Operation Olalampo Targets MENA with AI Malware

Iranian hackers launch AI-assisted malware in new Middle East cyber-espionage campaign.

  • The Iranian state-sponsored hacking group MuddyWater has launched a new campaign called Operation Olalampo, deploying multiple new malware families.
  • The group utilized AI-assisted development tools to create a Rust-based backdoor and targeted organizations in the Middle East and North Africa via malicious email attachments.
  • Security researchers at Group-IB found the malware shares code with prior tools, indicating continuous evolution of the threat actor’s capabilities.

The Iranian cyber-espionage group MuddyWater has targeted entities across the Middle East and North Africa since late January 2026 with a sophisticated new malware suite, according to a report published by Group-IB. This campaign, codenamed Operation Olalampo, involves phishing emails with malicious documents that deploy a range of custom tools.

- Advertisement -

Consequently, the attack chains ultimately drop downloaders like GhostFetch and HTTP_VIP, which fetch advanced backdoors. One notable implant is a Rust-based backdoor named CHAR, which is controlled via a Telegram bot for remote command execution.

Meanwhile, a separate downloader variant leads to GhostBackDoor, granting attackers an interactive shell and file control. Analysts found that CHAR’s source code contains emojis in debug strings, suggesting “signs of artificial intelligence (AI)-assisted development”.

This finding aligns with previous observations that the group experiments with generative AI for malware creation. Furthermore, CHAR shares structural similarities with another Rust malware, BlackBeard, previously used by the same actor.

The group has also been observed exploiting recent vulnerabilities on public-facing servers for initial access. Group-IB concluded that the operation highlights MuddyWater’s dedication to expanding its technical capabilities and regional focus.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Alphabet Launches Two New AI Models, Eyes Stock Boost

Alphabet launches two new AI models, Nano Banana 2 Lite and Gemini Omni Flash,...

Nvidia’s Kyber AI rack delayed to 2028: report

NVIDIA's next-generation Kyber server rack, designed for Rubin Ultra chips, is delayed to 2028...

TrojPix Air-Gap Attack Uses Monitor Cables

Researchers at Shandong University have demonstrated a new covert data exfiltration technique called TrojPix.The...

Bitcoin Reclaims $63k as Crypto Market Sees July Reversal

Bitcoin (BTC) reclaimed $63,000 in early July 2026, signaling a market reversal after a...

2026 ASEAN SHOP Opens in Kuala Lumpur to Drive Southeast Asia’s Smart Retail Growth

KUALA LUMPUR, Malaysia. ASEAN SHOP will host its 2026 edition at the MITEC Pavilion...

Must Read

5 Best Crypto Jobs Sites To Land Your Next Six Figure Job

The cryptocurrency and blockchain job market has exploded. With new blockchain start-ups and projects being founded at a blistering pace, the demand for workers...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading