January 2026 APT Group Trends Report

January 2026 APT Group Trends Report

  Key APT Groups   Sandworm attempted to destroy OT and IT equipment using DynoWiper after exploiting a vulnerable configuration of FortiGate, targeting at least 30 energy facilities, including wind and solar power plants in Poland, by the end of December 2025. They directly damaged RTUs, IEDs, and serial devices

December 2025 APT Group Trends

December 2025 APT Group Trends

  Key APT Group Trends by Region   1) North Korea   North Korean state‑sponsored threat groups have increasingly relied on fake IT employment schemes, actively exploiting legitimate hiring platforms and fabricated identities to infiltrate corporate environments. These actors frequently take advantage of remote‑work infrastructures to obtain elevated access and

November 2025 APT Group Trends

November 2025 APT Group Trends

Trends of Key APT Groups by Region   1) North Korea   The attack techniques of threat actors suspected to be based in North Korea are continuously evolving. In the case of malware distribution, threat actors are increasingly using a JSON-based cloud storage service instead of traditional email attachments or

October 2025 APT Group Trends

October 2025 APT Group Trends

Trends of Key APT Groups by Region   1)   North Korea North Korea-affiliated cyber threat groups have stolen cryptocurrency, credentials, and performed reconnaissance and remote control attacks through various malware and operations. They used Node.js-based malware and a multi-stage infection chain to target both Windows and macOS environments. Through their

August 2025 Threat Trend Report on APT Groups

August 2025 Threat Trend Report on APT Groups

Purpose and Scope This report covers nation-led threat groups, presumed to conduct cyber espionage or sabotage supported by certain governments. These groups are referred to as advanced persistent threat (APT) groups for the sake of convenience. Therefore, this report does not contain information on cybercriminal groups aiming to gain financial

July 2025 Major APT Group Trends

July 2025 Major APT Group Trends

Purpose and Scope This report covers nation-led threat groups, presumed to conduct cyber espionage or sabotage supported by certain governments. These groups are referred to as advanced persistent threat (APT) groups for the sake of convenience. Therefore, this report does not contain information on cybercriminal groups aiming to gain financial

Mobile Security & Malware Issue 4st Week of July, 2025

Mobile Security & Malware Issue 4st Week of July, 2025

ASEC Blog publishes “Mobile Security & Malware Issue 4st Week of July, 2025”

Threat Trend Report on APT Groups – July 2024 Major Issues on APT Groups

Threat Trend Report on APT Groups – July 2024 Major Issues on APT Groups

Purpose and Scope   This report covers nation-led threat groups presumed to conduct cyber espionage or sabotage under the support of the governments of certain countries, referred to as “Advanced Persistent Threat (APT) groups” for the sake of convenience. Therefore, this report does not contain information on cybercriminal groups aiming

Threat Trend Report on APT Groups – April 2024 Major Issues on APT Groups

Threat Trend Report on APT Groups – April 2024 Major Issues on APT Groups

The cases of major APT groups for April 2024 gathered from materials made public by security companies and institutions are as follows.   1)  APT28 (Forest Blizzard)   Microsoft Threat Intelligence released the results of the investigation on the activities of APT28, a Russia-based threat actor.[1] This group has been

Threat Trend Report on APT Groups – March 2024 Major Issues on APT Groups

Threat Trend Report on APT Groups – March 2024 Major Issues on APT Groups

The cases of major APT groups for March 2024 gathered from materials made public by security companies and institutions are as follows.   1)   Andariel   ASEC announced that the Andariel group is launching attacks using IMON Client and NetClient (Korean asset management solutions).[1] The group used self-developed malware strains