Cyber Threat Actor: Taskin Ahmmed
| Actor Type | Location | Known Incidents |
Activist
|
Bangladesh
|
1 incident |
|---|
Profile
Taskin Ahmmed isan alias associated with a Bangladeshi hacktivist collective known as Mysterious Team Bangladesh, which operates from Bangladesh and has been linked to a network of student and recent graduate activists aged 20 to 25 primarily based in Chittagong. The group has demonstrated historical ties to broader Bangladeshi hacker organizations and maintains cooperative relationships with other hacktivist entities such as the Indonesia‑based Hacktivist of Garuda, indicating a pattern of regional collaboration among activist cyber teams. Their public presence is maintained through social media channels like Facebook and Telegram, where they claim responsibility for operations and communicate with supporters.
The collective’s typical targeting focuses on government institutions, specifically Indian governmental websites and servers, reflecting a regional emphasis on neighboring state infrastructure. Their strategic objective, as evidenced by observed activities, is disruption rather than financial gain or espionage, employing distributed denial‑of‑service tactics to impede online services and create operational instability. In terms of tactics, techniques, and procedures, the group relies on HTTP flood attacks facilitated by tools such as Raven Storm, a method that generates high volumes of seemingly legitimate web traffic to overwhelm target resources. They amplify the effect of these attacks by publicizing their actions on social platforms, which serves both as a claim of responsibility and a means to attract further attention or support.
A representative operation occurred on September 22, 2022, when Mysterious Team Bangladesh launched a coordinated HTTP flood campaign against multiple Indian government domains, including several state‑level websites, using Raven Storm to generate sustained traffic spikes. The attack resulted in service disruptions, heightened vulnerability to subsequent compromises, and highlighted the potential for infrastructure strain when defensive measures are bypassed during high‑volume traffic events. This incident exemplifies the group’s reliance on readily available DDoS tools, social media amplification, and a hacktivist motive aimed at signaling political dissent through cyber disruption.
