← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Bahamut cybermercenary group targets Android users with fake VPN apps | WeLiveSecurity
WHITE sunqiang 2022-11-24 Modified: 2022-12-01
2
IOCs
LOW VOLUME
ESET researchers have identified an active campaign targeting Android users, conducted by the Bahamut cybermercenary group, which they believe is a well-established and highly targeted cyber-espionage group.
APTBahamut
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
Bahamut
Indicators of Compromise (2)
All domain
TYPEINDICATORDESCRIPTIONCREATED
domain ft8hua063okwfdcu21pw.de group:Bahamut 2022-11-24
domain thesecurevpn.com group:Bahamut 2022-11-24
References (1)
↗ https://www.welivesecurity.com/2022/11/23/bahamut-cybermercenary-group-targets-android-users-fake-vpn-apps/