HAZY TIGER is a threat actor attributed to IN, also known as Bitter, T-APT-17, APT-C-08. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does HAZY TIGER exploit?

HAZY TIGER is known to exploit 6 CVEs. View the full list on the Strobes VI threat actor profile page.

HAZY TIGER

Also known as: Bitter, T-APT-17, APT-C-08, Orange Yali, TA397, G1002, Aramanberry

INInformation theft and espionage

Exploited CVEs

Overview

The Bitter threat group initially started using RAT tools in their campaigns, as the first Bitter versions, for Android released in 2014 were based on the AndroRAT framework. Over time, they switched to a custom version that has been known as BitterRAT ever since.

Exploited Vulnerabilities

CVE ID	Action
CVE-2012-0158	View Details
CVE-2017-11882	View Details
CVE-2018-0798	View Details
CVE-2018-0802	View Details
CVE-2021-1732	View Details
CVE-2017-12824	View Details

Quick Actions

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001