TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Infosecurity Magazine

Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group

2026-04-09 · Read original ↗

ATT&CK techniques detected

5 predictions
T1566.002Spearphishing Link
82%
“suspected south asian cyber espionage threat group that has been active since at least 2013. according to mitre att & ck, the group has targeted government, energy and engineering organizations in pakistan, china, bangladesh and saudi arabia. researchers from eset shared a report…”
T1078.004Cloud Accounts
76%
“and / or google accounts, including information on their families, associates and journalistic sources, ” the researchers said. this android spyware could have allowed the attackers to access and extract victims ’ files, personal contacts, text messages and geolocation, enable de…”
T1566.002Spearphishing Link
70%
“exfiltrating sensitive files. the sample analysis showed that its maintainers have added new capabilities over the years, indicating the spyware is actively being developed. lookout researchers also discovered live staging servers that are used to distribute prospy samples. these…”
T1566.002Spearphishing Link
41%
“january 2024. the ngo said the attackers “ invested time and effort to establish a connection with the targets through various channels. ” to do this, they impersonated legitimate people and services using fake accounts and profiles, messages and pages to impersonate people and m…”
T1111Multi-Factor Authentication Interception
32%
“january 2024. the ngo said the attackers “ invested time and effort to establish a connection with the targets through various channels. ” to do this, they impersonated legitimate people and services using fake accounts and profiles, messages and pages to impersonate people and m…”

Summary

A spear-phishing campaign which spread across the Middle East between 2023 and 2024 has now been linked to Bitter APT group