Black & White Path

Apr 12, 2026 · Information Security

How an APT Hijacked Apple Accounts in 30 Seconds to Spy on Middle‑East Journalists

A three‑year investigation by Access Now, SMEX and Lookout reveals that the Indian APT group BITTER conducted rapid Apple‑ID phishing, 2FA‑relay attacks and Android spyware deployments to fully compromise the accounts of journalists across the Middle East and North Africa, often within 30 seconds of credential entry.