"'Dark Pink' Hacking Group Targets Government and Military in Southeast Asia"

Group-IB has released a report on a new Advanced Persistent Threat (APT) campaign targeting Southeast Asian and Eastern European countries for espionage. The APT dubbed "Dark Pink" is considered to be a new threat actor. Dark Pink has targeted military entities, government ministries and agencies, and religious and nonprofit organizations in Cambodia, Indonesia, Malaysia, the Philippines, and more. Researchers from Group-Threat IB's Intelligence have attributed seven successful attacks to the group, as well as one unsuccessful attack on a European state development body in Vietnam. Dark Pink employs spear-phishing to target people for corporate espionage using a custom toolkit. The group's tools aim to exfiltrate files, microphone audio, and messenger data from devices and networks. So far, researchers have been unable to attribute this operation, which uses custom tools along with uncommon methods and techniques, to a known threat actor. Therefore, Group-IB believes that Dark Pink's campaign in the second half of 2022 is the work of a completely new group. This article continues to discuss findings and observations regarding the Dark Pink APT group.

SiliconANGLE reports "'Dark Pink' Hacking Group Targets Government and Military in Southeast Asia"