{"id":232914,"date":"2026-04-09T06:40:00","date_gmt":"2026-04-09T10:40:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/04\/09\/bitter-linked-hack-for-hire-campaign-targets-journalists-across-mena-region\/"},"modified":"2026-04-09T12:32:11","modified_gmt":"2026-04-09T16:32:11","slug":"bitter-linked-hack-for-hire-campaign-targets-journalists-across-mena-region","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/04\/09\/bitter-linked-hack-for-hire-campaign-targets-journalists-across-mena-region\/","title":{"rendered":"Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region"},"content":{"rendered":"<p><a href=\"https:\/\/thehackernews.com\/2026\/04\/bitter-linked-hack-for-hire-campaign.html\">Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region<\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/04\/bitter-linked-hack-for-hire-campaign.html\">https:\/\/thehackernews.com\/2026\/04\/bitter-linked-hack-for-hire-campaign.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-04-09 06:40:00<\/a><\/p>\n<p>Source Domain: <a href=\"thehackernews.com\">thehackernews.com<\/a><\/p>\n<p>An\u00a0apparent hack-for-hire campaign likely orchestrated by a threat actor with suspected ties to the Indian government targeted journalists, activists, and government officials across the Middle East and North Africa (MENA), according to findings\u00a0from Access\u00a0Now, Lookout,\u00a0and SMEX.<\/p>\n<p>Two\u00a0of the targets included prominent Egyptian journalists and government critics, Mostafa Al-A&#8217;sar and Ahmed Eltantawy, who were at the receiving end of a series of spear-phishing attacks that sought to compromise their Apple and Google accounts in October 2023 and January 2024 by directing them to fake pages that tricked them into entering their credentials and two-factor authentication (2FA)\u00a0codes.<\/p>\n<p>&#8220;The attacks were carried out from 2023 to 2024, and both targets are prominent critics of the Egyptian government who have previously faced political imprisonment; one of them was previously targeted\u00a0with spyware,&#8221; Access Now&#8217;s Digital Security Helpline\u00a0said.<\/p>\n<p>Also\u00a0singled out as part of these efforts was an anonymous Lebanese journalist, who received phishing messages in May 2025 through the Apple Messages app and WhatsApp containing malicious links that, when clicked, tricked users into entering their account credentials as part of a supposed verification step from\u00a0Apple.<\/p>\n<p>&#8220;The phishing campaign included persistent attacks via iMessage\/Apple Messenger and WhatsApp app, [&#8230;] impersonating Apple Support,&#8221; SMEX, a digital rights non-profit in the West Asia and North Africa (WANA) region, said. &#8220;While the main focus of this campaign appears to be Apple services, evidence suggests that other messaging platforms, namely Telegram and Signal, were also targeted.&#8221;<\/p>\n<p>In\u00a0the case of Al-A&#8217;sar, the spear-phishing attack aimed at compromising his Google account began with a LinkedIn message from a sock puppet persona named &#8220;Haifa Kareem,&#8221; who approached him with a job opportunity. After\u00a0the journalist shared their mobile number and email address with the LinkedIn user, he received an email&#8230;<\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/04\/bitter-linked-hack-for-hire-campaign.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region https:\/\/thehackernews.com\/2026\/04\/bitter-linked-hack-for-hire-campaign.html Publish Date: 2026-04-09 06:40:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":232915,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjlfEPPxKdPdQANFPwRrggWpWL4wPe22B_Hdr5FpqDGHKTwN95xiQVwqqN896q_CkYvn-wrbDTXMl6wZ_aMD0YwEyRAI_9lzSZj_cg9-RhoNXMh-j16cA0n4CIT5y29FkOWFrQoV8oCv5OtZhMlhAKwqcgirImTOXoVzsJY76y6l-EWn86dAJfYNBy1ejW4\/s1600\/phone-hacking.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[25,34],"class_list":["post-232914","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-phishing","tag-threat-actor"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/232914"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=232914"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/232914\/revisions"}],"predecessor-version":[{"id":232916,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/232914\/revisions\/232916"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/232915"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=232914"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=232914"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=232914"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}