LOWData BreachACTIVE
The Hacker News: Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API
April 22, 2026
Incident Summary
A threat actor named Harvester has deployed a Linux version of the GoGra backdoor targeting entities in South Asia. The campaign uses Microsoft Graph API and Outlook mailboxes as part of its command-and-control communications. This matters because it leverages widely used Microsoft cloud and email infrastructure to blend malicious traffic into normal activity. The incident description does not specify which organizations were targeted, whether Microsoft systems were breached, or what data was accessed; limited public details are available.
Incident Details
- Type
- Data Breach
- Severity
- LOW
- Status
- ACTIVE
- Date Occurred
- April 22, 2026
#hackernews#security#breach