BAHAMUT Hack-For-Hire

The BAHAMUT threat group targeted multiple entities including government, citizens, and major industry companies with spear-phishing emails, disinformation campaigns, fake news sites, and bogus mobile apps. The cyber espionage operation deployed malicious software aimed at Microsoft Windows, Google Android, and Apple devices and sought out sensitive information including credentials. The threat actor focused on the Middle East and Asia and used zero-day exploits and anti-forensic/AV evasion tactics for defense evasion.