Intel Name: Threat group assessment: muddled libra
Date of Scan: May 20, 2025
Impact: High
Summary: Muddled Libra’s operations have evolved throughout 2024. As members rotate in and out, the group’s capabilities and tactics continue to adapt. Their toolkit now includes end-user and helpdesk social engineering, traditional phishing, insider access via business process outsourcers, and ransomware partnerships for extortion. Positioned at the crossroads of crafty social engineering and agile technical innovation, Muddled Libra poses a serious threat—even to organizations with mature cybersecurity defenses.
