Blog

[위협 분석] 건강검진 안내 문서로 위장한 악성코드

2025년 10월 말, 건강검진 안내 문서로 위장한 JSE 파일이 조직적인 APT 공격에 활용되었으며, 분석 결과 북한 Kimsuky 조직에 의한 공격으로 판단됩니다. Kimsuky는 북한과 연계된 것으로 추정되는 APT(Advanced Persistent Threat) 그룹으로, 주로 정보 수집과 관련된 각종 스파이 활동을 수행합니다.

2025-11-06

[Cyber Threat Analysis] Malware Analysis Targeting Windows and macOS by the Lazarus Group

In September 2025, a coordinated **Advanced Persistent Threat (APT)** campaign was discovered, targeting both Windows and macOS systems.

2025-10-13

[Cyber Threat Analysis] Kimsuky Attack Disguised as Sex Offender Notification

In late July 2025, a coordinated APT attack was identified, leveraging sex offender notifications and national tax notices as lures.

2025-09-22

Jan 2025 — Cyber Attack Trends

“With the rapid expansion of cloud and SaaS, the limitations of traditional legacy cybersecurity strategies have become increasingly apparent.”

2025-02-12

Oct 2024 — Cyber Attack Trends

“Are Cyber Attacks Originating from North Korea Actually the Work of Actually the Work of North Korea?”

2024-11-18

Jul 2024 — Cyber Attack Trends

“Korean companies expanding overseas should pay close attention to local cyber attack incidents”

2024-08-09

Jun 2024 — Cyber Attack Trends

“APT attacks are evolving by actively leveraging open-source tools like GitHub”

2024-07-08

May 2024 — Cyber Attack Trends

“South Korean auto parts company was exposed to a ransomware attack and that important information was stolen”

2024-07-08

Apr 2024 — Cyber Attack Trends

“Most systems are infected even though they are using an anti-virus solution”

2024-05-23

Mar 2024 — Cyber Attack Trends

“The main malware infection factor is the use of the KeyGen series of illegal software license generators”

2024-05-23

Feb 2024 — Cyber Attack Trends

“The increase in overseas travel since the end of the pandemic has led to a rise in credential leaks”

2024-05-23

Jan 2024 — Cyber Attack Trends

“Attacks Using Malicious Lookalike Domains Increase During Holiday Season”

2024-05-23