Te-k/oceanlotus.md

Created March 10, 2021 15:49

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/Te-k/2a16343520bd9a904575686025632bf2.js"></script>
Save Te-k/2a16343520bd9a904575686025632bf2 to your computer and use it in GitHub Desktop.

Download ZIP

Ocean lotus reports

Raw

oceanlotus.md

Ocean Lotus

aka Cobalt Kitty, APT-C-00, SeaLotus, Sea Lotus, APT-32, APT 32, Ocean Buffalo, POND LOACH, TIN WOODLAWN, BISMUTH

Reports

Dec 2020 : Taking Action Against Hackers in Bangladesh and Vietnam
- Reuters
Dec 2020 : APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
Nov 2020 : New APT32 Malware Campaign Targets Cambodian Government by Recorded Future
Nov 2020 : Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them
Nov 2020 : New MacOS Backdoor Connected to OceanLotus Surfaces
Nov 2020 : OceanLotus: Extending Cyber Espionage Operations Through Fake Websites
Oct 2020 : APT32 deobfuscation arsenal: Deobfuscating một vài loại Obfucation Toolkit của APT32 (Phần 3)
Oct 2020 : Im Visier vietnamesischer Hacker (English version)
May 2020 : Android Campaign from Known OceanLotus APT Group Potentially Older than Estimated, Abused Legitimate Certificate
Apr 2020 : Vietnamese Threat Actors APT32 Targeting Wuhan Government and Chinese Ministry of Emergency Management in Latest Example of COVID-19 Related Espionage by FireEye
- Reuters : Vietnam-linked hackers targeted Chinese government over coronavirus response: researchers
Apr 2020 : Hiding in plain sight: PhantomLance walks into a market
Mar 2020 : Vietnam's national background APT organization "Ocean Lotus" uses the topic of epidemic to attack Chinese government agencies
Oct 2019 : Mobile Malware and APT Espionage: Prolific, Pervasive, and Cross-Platform
July 2019 : Threat Spotlight: Ratsnif - New Network Vermin from OceanLotus
May 2019 : Attacks to Indochinese Peninsula
Apr 2019 : OceanLotus APT organizes the technical secrets of the attacks against China in the first quarter of 2019
Mar 2019 : Breach of Toyota in Australia, Japan, Thailand and Vietnam
Mar 2019 : Malicious macro armed documents likely targeting ASEAN affairs and meeting members
Mar 2019 : macOS malware update
Mar 2019 : Fake or Fake: Keeping up with OceanLotus decoys
Mar 2019 : JEShell: An OceanLotus (APT32) Backdoor
Feb 2019 : Tracking OceanLotus’ new Downloader, KerrDown
Oct 2018 : Report: The SpyRATs of OceanLotus
Sept 2018 : Watering Hole Attack in Southeast Asia
May 2018 : Watering Hole Attack using the Phnom Penh Post website
Apr 2018 : Steganography to Shroud Payloads
Apr 2018 : New MacOS Backdoor
Apr 2018 : A new sample and correlation analysis of the CVE-2017-8570 vulnerability exploited by the OceanLotus APT group
Mar 2018 : OceanLotus ships new backdoor using old tricks
Early 2018 : KerrDown downloader
Nov 2017 : OceanLotus Blossoms: Mass Digital Surveillance and Attacks Targeting ASEAN, Asian Nations, the Media, Human Rights Groups, and Civil Society
May 2017 : Operation “Cobalt Kitty”
May 2017 : Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations
Mar 2017 : Breach of the ASEAN website
Aug 2015 : Terracotta VPN
May 2015 : 数字海洋的游猎者
Jan 2014 : Vietnamese Malware Gets Very Personal

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment