DustSquad is a threat actor attributed to RU, also known as G0133, Nomadic Octopus, APT-C-34. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does DustSquad exploit?

Specific CVE exploitation data for DustSquad is being tracked. Check the Strobes VI threat actor profile for updates.

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

DustSquad

Also known as: G0133, Nomadic Octopus, APT-C-34, DustSquad, Golden Falcon

RUInformation theft and espionage

Exploited CVEs

Overview

Prodaft researchers have published a report on Paperbug, a cyber-espionage campaign carried out by suspected Russian-speaking group Nomadic Octopus and which targeted entities in Tajikistan. According to Prodaft, known compromised victims included high-ranking government officials, telcos, and public service infrastructures. Compromised devices also included OT devices, besides your typical computers, servers, and mobile devices. In typical Prodaft fashion, the company also gained access to one of the group's C&C server backend panels.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database