Between February and September 2022, the Witchetty espionage group (also known as LookingFrog) targeted governments in Middle Eastern countries and the stock exchange of an African country to deliver the Stegmap and LookBack backdoors.

Witchetty is assessed to have links to the Chinese nation-state unit APT10 due to overlaps in infrastructure and toolsets. In 2019, we assessed that APT10 deployed LookBack to target at least 17 entities within the US utilities sector.

Download the report