95

Sophistication

2008

First Seen

85

Notoriety

92

Stealth

93

Immersive Rating

94

Impact

88

Tactics Variety

Lazarus Group

A North Korean state-linked threat group known for a blend of espionage, cyber-crime, and destructive operations. This group was behind major incidents, including the Sony Pictures hack and the WannaCry ransomware outbreak. Highly resourced, adaptive, and capable across financial theft, supply-chain compromise, and espionage.

‍

Key behaviours to watch:

Spear-phishing delivering custom loaders (e.g., Manuscrypt, AppleJeus) for credential theft and remote access.
Long-term persistence using DLL side-loading, scheduled tasks, and compromised VPN accounts.
Financial operations involving crypto-exchange compromise, mixer abuse, and multi-stage laundering chains.

Immersive coverage includes:

Lazarus Threat Actors Lab

Blog

Releated Content

January 13, 2026

Patch Tuesday January 2026 - Critical Microsoft Security Patches Released Including Vulnerabilities Being Actively Exploited in the Wild

December 31, 2025

Atera Under the Spotlight: Exploring More Effective Detections

December 9, 2025

Patch Tuesday December 2025 - Critical Microsoft Security Patches Released For Privilege Escalation and Remote Code Vulnerabilities

No items found.

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Anonymous

40

2003

95

30

55

60

70

APT1

85

2004

80

45

72

88

70

APT10

92

2006

78

90

90

94

88

APT32

88

2014

70

79

83

87

83

APT34

84

2014

68

74

88

82

86

APT35

73

2014

65

65

81

74

80

Chimera

68

2019

55

63

69

72

61

Cozy Bear

70

2012

57

71

64

64

58