Threat Intelligence / Actor / MuddyWater / Seedworm

MuddyWater / Seedworm

Nation: Iran · 2 tracked threat(s) · Categories: VULNERABILITY, APT

Also known as: Seedworm, Boggy Serpens, Static Kitten, Mercury, Mango Sandstorm, TEMP.Zagros, Earth Vetala, MuddyWater, Temp.Zagros, COBALT ULSTER, TA450

Tracked threats

Laravel Livewire Unauthenticated RCE via Synthesizer Smuggling — MuddyWater Active Exploitation (CVE-2025-54068) — CRITICAL
Iranian APT MuddyWater (Seedworm) Deploys Novel Dindoor & Fakeset Backdoors Against U.S. Critical Infrastructure — CRITICAL

Full actor intelligence — infrastructure, IOCs, detection coverage and operator fingerprints — is available via the Threadlinqs MCP server (Purple tier). View plans →

Threadlinqs Intelligence