Notorious Hacking Group Adds Bangladesh to their List of Targets
Vitor Ventura, a lead security researcher at Cisco Talos for EMEA and Asia said, Bitter (also known as APT-C-08 or T-APT-17) is thought to be a South Asian hacking group largely focused on intelligence gathering, aided by malware such as BitterRAT, ArtraDownloader, and AndroRAT. Their primary targets include energy, engineering, and government industries. This hacking group has a history of exploiting zero-day defects — CVE-2021-1732 and CVE-2021-28310 — to achieve its antagonistic objectives, with the first attacks spreading the mobile version of BitterRAT back in September 2014. Their latest attack includes targeting an elite entity of the Bangladeshi government. It involved sending spear-hacking emails to the senior officers of the Rapid Action Battalion Unit of the Bangladesh police (RAB). Following the typical trajectory, the hacking group used the messages to lure the recipients into opening a weaponized RTF document or a Microsoft Excel spreadsheet that uses previously known flaws in the software to deploy a new trojan dubbed “ZxxZ.” According to the researchers, Check out? Spotify Now Open for Business for Advertisers in Pakistan, Bangladesh and Sri Lanka