OceanLotus has a vast array of tools at its disposal to conduct espionage.

The social media giant pinned the Vietnam-based activity on APT32, also known as Ocean Lotus.

The hacking group known as Bismuth, APT32 or Ocean Lotus installed Monero miners on victims' networks while it was up to other, more nefarious activities, researchers say.

Researchers at Trend Micro say a newly discovered MacOS backdoor uses tactics previously associated with the group known as APT32 or OceanLotus.

The latest findings come after Kaspersky uncovered an espionage effort involving the coronavirus pandemic.

Vietnamese government-linked hackers have been distributing malicious applications in the Google Play Store for at least the last four years, Kaspersky researchers said Tuesday.

APT32 looks to be targeting Chinese government organizations in pursuit of information on China's coronavirus response, FireEye researchers said.

For a group that has put Vietnam on the map in terms of power projection in cyberspace, the unsophisticated nature of the code stands out.

The breach, which affected Toyota Tokyo Sales Holding Inc. and its affiliated enterprises, was the second high-profile cybersecurity incident at Toyota in as many months.

Vietnam wants to build its auto industry. APT32 is trying to help.