Threat Management, Malware

Leaked Trump-Duterte transcript linked to more sensitive documents, APT32

The leaked transcripts of a phone conversation between President Donald Trump and Philippine President Rodrigo Duterte may be just one of a series of sensitive Philippine government documents stolen by APT32, also known as OceanLotus.

On May 15, someone reportedly updated what appear to be the leaked transcripts to the online repository VirusTotal along with malicious email attachments, according to Cyberscoop.

The leak reportedly also contained notes regarding a conversation between Duterte and Chinese President Xi Jinping, briefing notes for a call between Philippine government officials and a U.S. senator, and internal documents tied to the Philippine National Security Council, the publication said. The files reportedly originated from APT32.

The authenticity of the files has yet to be confirmed however, dates on the documents reportedly coincide with public reporting of the incident and FireEye Mandiant Incident Response Senior Manager Nick Carr told the publication the files could have been used as lures to entice a recipient to open a malicious attachment.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.