Affiliations
- Also known as APT 32
This threat actor, known to use watering-hole attacks to compromise victims, targets organizations of interest to the Vietnamese government for espionage purposes. Victims have included human rights organizations, research institutes and maritime construction firms in China, and media organizations. Also believed to have been responsible for disclosing confidential Filipino government documents.
Suspected victims
- China
- Germany
- Cambodia
- United States
- Vietnam
- Laos
- Philippines
- Association of Southeast Asian Nations
Suspected state sponsor
- Vietnam
Type of incident
- Espionage
Target category
- Government
- Private sector
- Civil society
Read more
- APT OceanLotus
- Cyber Espionage is Alive and Well: APT 32 and the Threat to Global Corporations
- An Up-Close View of the Notorious APT 32 Hacking Group in Action
- OceanLotus Blossoms: Mass Digital Surveillance and Attacks Targeting ASEAN, Asian Nations, the Media, Human Rights Groups, and Civil Society
- Lotus Blossom Continues ASEAN Targeting
- OceanLotus ships new backdoor using old tricks