1/ Today we announced two takedowns of networks conducting cyber-espionage — one operating in Vietnam, and the other in Bangladesh. https://about.fb.com/news/2020/12/taking-action-against-hackers-in-bangladesh-and-vietnam/
2/ The Vietnam operation, run by APT32, targeted human rights activists in Vietnam and overseas, on our platforms and elsewhere, using social engineering, malware, and other malicious techniques. We found links to CyberOne Group, a Vietnamese IT company. https://www.reuters.com/article/facebook-vietnam-cyber/facebook-tracks-oceanlotus-hackers-to-it-firm-in-vietnam-idUSKBN28L03Y?il=0
3/ The Bangladesh op, which we linked to two non-profits, coordinated to maliciously report targets for fictitious policy violations, seeking to get them removed. They also tried to hack targets' accounts & Pages, including through what appears to be email & device compromise.
4/ We have removed all assets linked to both of these networks, and will continue to monitor should they attempt to re-establish their operations.
5/ As with our CIB announcements, we are sharing this information publicly to educate the public; to increase the cost for bad actors that engage in techniques like this; and to help the cybersecurity research community find and expose similar behavior.