Facebook outs company behind infamous APT32 malware group, suspends accounts Ransomware
Facebook has unexpectedly revealed the identity of the notorious APT32 hacking group that has been blamed for a number of malware campaigns stretching back almost a decade. Little was previously known about the group, apart from a widely-held suspicion that it was backed by the Vietnamese Government.
“APT32, an advanced persistent threat actor based in Vietnam, targeted Vietnamese human rights activists locally and abroad, various foreign governments including those in Laos and Cambodia, non-governmental organizations, news agencies and a number of businesses across information technology, hospitality, agriculture and commodities, hospitals, retail, the auto industry, and mobile services with malware,” explained the firm.
“Our investigation linked this activity to CyberOne Group, an IT company in Vietnam (also known as CyberOne Security, CyberOne Technologies, Hành Tinh Company Limited, Planet and Diacauso).”
Facebook said that the APT32 group used its platform to spread malware through a variety of methods. Normally this would involve sharing links with its victims that either led to compromised websites or malicious applications containing spyware that had been uploaded to the Google Play Store.
Group outing
The social network also revealed some of the group’s most commonly targeted victims, which included Vietnamese human rights activists, foreign governments, news agencies, and a broad spectrum of businesses.
In response to its discovery, Facebook has taken down all accounts and pages that it has deemed to have a connection to the APT32 group and blocked domains to prevent the group from re-surfacing on the platform. Facebook has also shared its discovery with other social networks and security firms so that they can take action against the group.
Facebook’s efforts to crack down on the APT32 group may prove controversial, however. While the group has been connected to a number of disruptive cyberattacks, it has largely avoided reprisals due to its supposed state-backing. It will be interesting to see which other organizations decide to go after APT32 following Facebook’s actions.
Via ZDNet
Facebook has unexpectedly revealed the identity of the notorious APT32 hacking group that has been blamed for a number of malware campaigns stretching back almost a decade. Little was previously known about the group, apart from a widely-held suspicion that it was backed by the Vietnamese Government. “APT32, an advanced…
Recent Posts
- A battle might be brewing as talks swirl of OpenAI working on a search engine to challenge Google’s dominance
- Multibillion-dollar Apple deal looms large in Google antitrust trial
- Everything new on Netflix in May 2024
- The Morning After: Peloton’s grim post-pandemic reality
- Netflix’s Cobra Kai season 6 will be a mega 15 episode epic released in 3 parts from July
Archives
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011