The leaked transcripts of a phone conversation between President Donald Trump and Philippine President Rodrigo Duterte may be just one of a series of sensitive Philippine government documents stolen by APT32, also known as OceanLotus.
On May 15, someone reportedly updated what appear to be the leaked transcripts to the online repository VirusTotal along with malicious email attachments, according to Cyberscoop.
The leak reportedly also contained notes regarding a conversation between Duterte and Chinese President Xi Jinping, briefing notes for a call between Philippine government officials and a U.S. senator, and internal documents tied to the Philippine National Security Council, the publication said. The files reportedly originated from APT32.
The authenticity of the files has yet to be confirmed however, dates on the documents reportedly coincide with public reporting of the incident and FireEye Mandiant Incident Response Senior Manager Nick Carr told the publication the files could have been used as lures to entice a recipient to open a malicious attachment.
