Vietnamese Human Rights Group Targeted in Multi-Year Cyberattack by APT32

29-August-24

A Vietnamese human rights non-profit has been the victim of a multi-year cyberattack attributed to the hacking group APT32, also known as OceanLotus. The campaign, ongoing for at least four years, involved the delivery of various malware to compromised systems. Cybersecurity firm Huntress linked the activity to APT32, a Vietnamese-aligned threat group known for cyber espionage in East Asia. The attacks utilized spear-phishing and watering hole techniques to deploy backdoors, steal sensitive information, and launch Cobalt Strike Beacons, enabling the theft of Google Chrome cookies and further system exploitation.

Read More…