January 2026 APT Group Trends Report

January 2026 APT Group Trends Report

  Key APT Groups   Sandworm attempted to destroy OT and IT equipment using DynoWiper after exploiting a vulnerable configuration of FortiGate, targeting at least 30 energy facilities, including wind and solar power plants in Poland, by the end of December 2025. They directly damaged RTUs, IEDs, and serial devices

November 2025 APT Group Trends

November 2025 APT Group Trends

Trends of Key APT Groups by Region   1) North Korea   The attack techniques of threat actors suspected to be based in North Korea are continuously evolving. In the case of malware distribution, threat actors are increasingly using a JSON-based cloud storage service instead of traditional email attachments or

Threat Trend Report on APT Groups – May 2024 Major Issues on APT Groups

Threat Trend Report on APT Groups – May 2024 Major Issues on APT Groups

The cases of major APT groups for May 2024 gathered from materials made public by security companies and institutions are as follows.   1.    Andariel   AhnLab SEcurity intelligence Center (ASEC) has been sharing Andariel group’s various attack cases against Korea.[1]  The Nestdoor backdoor that the Andariel group had used