MuddyWater Deploys Snake Game Malware Against Middle East
Iran-linked MuddyWater ran a campaign from September 2024 through March 2025 that disguised a custom backdoor, MuddyViper, as a Snake game to target Israeli and Egyptian organizations. Researchers at ESET and other firms report attackers used phishing and custom loaders to steal credentials, maintain persistence, and exfiltrate data. Authorities in Israel and Egypt have issued advisories and stepped up MFA, EDR, segmentation, and user training.
Key Points
- 1Deliver malware via spoofed Snake game, deploying MuddyViper backdoor from Sept 2024–Mar 2025
- 2Exploit phishing and custom loaders to harvest credentials and enable persistent espionage across sectors
- 3Mandate MFA, EDR behavioral analytics, network segmentation, and phishing training to limit lateral movement
Scoring Rationale
Credible, actionable threat intelligence with regional impact, but limited novelty and mainly affects Middle Eastern targets.
Sources
Public references used for this report.
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems
