Risk intelligence specialists from Group-IB have make clear the hacktivist collective often called Mysterious Crew Bangladesh.
In a report printed right this moment, the agency analyzed the group’s historical past, ways and targets, offering important insights into its operations.
Mysterious Crew Bangladesh emerged in 2020 however gained worldwide recognition in 2022 after conducting cyber raids towards high-profile targets in India, Israel and different international locations. The group primarily focuses on the federal government, monetary and transportation sectors, with a powerful emphasis on India.
Learn extra about these assaults: ‘Crew Mysterious Bangladesh’ Hackers Goal Indian Training Entity
Key findings from the Group-IB evaluation state that the group carried out over 750 Distributed Denial of Service (DDoS) assaults and greater than 70 web site defacements inside a yr.
“Moreover, it’s believed that in some circumstances the group was additionally capable of achieve entry to net servers and administrative panels, presumably utilizing exploits for extensively identified vulnerabilities or frequent/default passwords for admin accounts,” reads the report.
The group was noticed initiating multi-wave campaigns towards particular international locations and conducting “check assaults” earlier than full-scale DDoS assaults. PHPMyAdmin and WordPress vulnerabilities had been incessantly exploited, and the group employed open-source utilities for DDoS and defacement assaults.
The Group-IB report additionally revealed that the group’s founder and chief is a menace actor often called D4RK_TSN. The group maintains an energetic Telegram channel as their major supply for saying previous and upcoming assaults.
Mysterious Crew Bangladesh is linked to a number of allied hacktivist teams, and their actions are sometimes triggered by international geopolitical conflicts, as evidenced by campaigns towards Myanmar and Bangladesh.
Extra typically, the report highlighted the necessity for organizations to take the specter of hacktivism critically and undertake measures comparable to deploying load balancers, filtering suspicious visitors and updating web-server software program to stop exploitation.
“As of July 2023, Mysterious Crew Bangladesh continues to be extremely energetic, concentrating on primarily India and Israel,” Group-IB warned.
“We assume that the group will increase its operations additional in 2023. They’ll possible intensify their assaults in Europe, Asia-Pacific, and the Center East, and count on that they’ll proceed to have a selected concentrate on monetary firms and authorities entities.”
