Cyber Resilience

Threat actor · all actors

Nomadic OctopusG0133 unknown

aka Nomadic Octopus, DustSquad

Last updated: 2026-07-03

1attributed CVEs
11ATT&CK techniques
3.6IDF score (tooling uniqueness)
0exclusive CVEs
2026years active

About this actor

[Nomadic Octopus](https://attack.mitre.org/groups/G0133) is a Russian-speaking cyber espionage threat group that has primarily targeted Central Asia, including local governments, diplomatic missions, and individuals, since at least 2014. [Nomadic Octopus](https://attack.mitre.org/groups/G0133) has been observed conducting campaigns involving Android and Windows malware, mainly using the Delphi programming language, and building custom variants.(Citation: Security Affairs DustSquad Oct 2018)(Citation: Securelist Octopus Oct 2018)(Citation: ESET Nomadic Octopus 2018)

Source: MITRE ATT&CK

Activity timeline

Profile

CVERiskCVSSEPSSPublishedProducts
CVE-2026-8732 7.09.80.09462026-05-29see CVE

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
CM-29 / 1182%
CM-69 / 1182%
SI-39 / 1182%
SI-49 / 1182%
CA-77 / 1164%
SI-107 / 1164%
SI-77 / 1164%
CM-76 / 1155%
AC-45 / 1145%
IA-95 / 1145%
SC-75 / 1145%
SI-25 / 1145%
AC-24 / 1136%
AC-34 / 1136%
AC-64 / 1136%

Co-occurring actors

Similar actors

Overlapping CVEs