APT32 is a threat actor attributed to VN, also known as APT-C-00, POND LOACH, Ocean Lotus. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does APT32 exploit?

Specific CVE exploitation data for APT32 is being tracked. Check the Strobes VI threat actor profile for updates.

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

APT32

Also known as: APT-C-00, POND LOACH, Ocean Lotus, Sea Lotus, TIN WOODLAWN, APT-32, BISMUTH, Cobalt Kitty, Ocean Buffalo, APT 32, OceanLotus Group, Canvas Cyclone, OceanLotus, ATK17, G0050, SeaLotus

Exploited CVEs

Overview

Cyber espionage actors, now designated by FireEye as APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. FireEye assesses that APT32 leverages a unique suite of fully-featured malware, in conjunction with commercially-available tools, to conduct targeted operations that are aligned with Vietnamese state interests.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database