Threat Trend Report on APT Groups
APT

Threat Trend Report on APT Groups

The following are the main APT groups and their cases based on the analysis reports released by security companies and organizations in January 2025.   1.   Andariel   The Andariel group has executed an attack using the RID Hijacking technique to escalate account privileges and create hidden accounts.[1] RID Hijacking

  • Feb 12 2025
APT Group Trends in October 2024
APT

APT Group Trends in October 2024

  The following are the main APT groups and their cases based on the analysis reports released by security companies and organizations in October 2024.   1.   Andariel   Symantec’s Threat Hunter Team has found evidence that the Andariel group is launching financially motivated attacks against companies in the United

  • Nov 12 2024
Threat Trend Report on APT Groups – July 2024 Major Issues on APT Groups
APT

Threat Trend Report on APT Groups – July 2024 Major Issues on APT Groups

Purpose and Scope   This report covers nation-led threat groups presumed to conduct cyber espionage or sabotage under the support of the governments of certain countries, referred to as “Advanced Persistent Threat (APT) groups” for the sake of convenience. Therefore, this report does not contain information on cybercriminal groups aiming

  • Aug 12 2024
Threat Trend Report on APT Groups – May 2024 Major Issues on APT Groups
APT Trend

Threat Trend Report on APT Groups – May 2024 Major Issues on APT Groups

The cases of major APT groups for May 2024 gathered from materials made public by security companies and institutions are as follows.   1.    Andariel   AhnLab SEcurity intelligence Center (ASEC) has been sharing Andariel group’s various attack cases against Korea.[1]  The Nestdoor backdoor that the Andariel group had used

  • Jun 05 2024
Threat Trend Report on APT Groups – March 2024 Major Issues on APT Groups
APT Trend

Threat Trend Report on APT Groups – March 2024 Major Issues on APT Groups

The cases of major APT groups for March 2024 gathered from materials made public by security companies and institutions are as follows.   1)   Andariel   ASEC announced that the Andariel group is launching attacks using IMON Client and NetClient (Korean asset management solutions).[1] The group used self-developed malware strains

  • Apr 05 2024
2023 Dec. – Threat Trend Report on APT Groups
APT Trend

2023 Dec. – Threat Trend Report on APT Groups

The cases of major APT groups for December 2023 gathered from materials made public by security companies and institutions are as follows.   1) Andariel The Korean police announced that the Andariel group attacked 14 targets in Korea including companies in the defense industry, IT security companies, research centers, and

  • Jan 09 2024