Middle East Hack-for-Hire Campaign Linked to Bitter APT
🔒 A spear-phishing campaign targeting Middle Eastern civil society and journalists has been linked to the South Asian threat actor Bitter, according to Access Now and mobile-security firm Lookout. Active from 2023 through 2025, the operation used Android spyware tracked as ProSpy and deceptive staging sites to deliver malicious APKs and harvest credentials. Attackers attempted Apple and Google account takeovers and could exfiltrate files, messages, contacts, geolocation and remotely enable microphones and cameras.
