skip to content
Decrypt LOL

Get Cyber-Smart in Just 5 Minutes a Week

Decrypt delivers quick and insightful updates on cybersecurity. No spam, no data sharing—just the info you need to stay secure.

Read the latest edition

Bitter Cyber Group Targets Turkish Defense with Malware

/ 1 min read

🦅 South Asian cyber espionage group Bitter targets Turkish defense sector. In November 2024, the cyber threat group known as Bitter, also referred to as TA397, executed an attack on a Turkish defense organization using two malware families, WmRAT and MiyaRAT. The attack involved a sophisticated delivery method utilizing alternate data streams within a RAR archive to deploy a malicious shortcut file that created a scheduled task on the victim’s machine. Bitter, active since at least 2013, has previously targeted entities across Asia and has been linked to various malware strains. The group’s operations are believed to support the intelligence interests of a South Asian government, focusing on collecting sensitive information and intellectual property from high-value targets.

Source
{entry.data.source.title}
Original