Monthly Threat Actor Group Intelligence Report, August 2025
Contents
Monthly Threat Actor Group Intelligence Report, August 2025
This is a summary of the activities of hacking groups (Threat Actor Groups) analyzed based on data and information collected by the NSHC Threat Research Lab from July 21, 2025, to August 20, 2025.
In August, activities of a total of 75 hacking groups were identified, with the largest portion being unidentified groups at 59%, followed by the activities of SectorJ and SectorA groups.
The hacking activities of hacking groups discovered this August primarily targeted officials or systems in government agencies and the financial sector, with the most attacks carried out against countries located in North America and Europe.
SectorA group primarily targets the finance and cryptocurrency sectors, employing fileless attacks, malicious LNK files, and software package exploitation. The ‘Contagious Interview’ campaign distributes various payloads such as BeaverTail, InvisibleFerret, and OtterCookie, with notable C2 activities based on Vercel.App and code execution using the eval function. The …
This is a summary of the activities of hacking groups (Threat Actor Groups) analyzed based on data and information collected by the NSHC Threat Research Lab from July 21, 2025, to August 20, 2025.
In August, activities of a total of 75 hacking groups were identified, with the largest portion being unidentified groups at 59%, followed by the activities of SectorJ and SectorA groups.
The hacking activities of hacking groups discovered this August primarily targeted officials or systems in government agencies and the financial sector, with the most attacks carried out against countries located in North America and Europe.
SectorA group primarily targets the finance and cryptocurrency sectors, employing fileless attacks, malicious LNK files, and software package exploitation. The ‘Contagious Interview’ campaign distributes various payloads such as BeaverTail, InvisibleFerret, and OtterCookie, with notable C2 activities based on Vercel.App and code execution using the eval function. The …