Threat Group Profiling: Lazarus
Contents
Threat Group Profiling: Lazarus
2025.04.29
✅ Report Title:
Threat Group Profiling: Lazarus (APT Group)
The S2W Threat Intelligence Center has published an analysis report on the Lazarus APT group, affiliated with North Korea's Reconnaissance General Bureau. This high-level threat intelligence report goes beyond basic profiling, offering in-depth insights into Lazarus’s organizational structure, recent attack trends, and evolving Tactics, Techniques, and Procedures (TTPs).
✅ Executive Summary:
📌 Who is the Lazarus APT Group?
- The Lazarus Group is a prominent APT group backed by the North Korean government, believed to have initiated its operations around 2009.
- It is also known by various aliases, including BlueNoroff, Andariel, Hidden Cobra, Guardians of Peace, Labyrinth Chollima, UNC4034, BlackArtemis, ZINC, Nickel Academy, APT-C-26, and Diamond Sleet.
- Lazarus has conducted a wide range of operations targeting global organizations and enterprises for data theft, system destruction, and cryptocurrency theft, among other objectives.
- Since January 2023 alone, the group is estimated to have carried out …
2025.04.29
✅ Report Title:
Threat Group Profiling: Lazarus (APT Group)
The S2W Threat Intelligence Center has published an analysis report on the Lazarus APT group, affiliated with North Korea's Reconnaissance General Bureau. This high-level threat intelligence report goes beyond basic profiling, offering in-depth insights into Lazarus’s organizational structure, recent attack trends, and evolving Tactics, Techniques, and Procedures (TTPs).
✅ Executive Summary:
📌 Who is the Lazarus APT Group?
- The Lazarus Group is a prominent APT group backed by the North Korean government, believed to have initiated its operations around 2009.
- It is also known by various aliases, including BlueNoroff, Andariel, Hidden Cobra, Guardians of Peace, Labyrinth Chollima, UNC4034, BlackArtemis, ZINC, Nickel Academy, APT-C-26, and Diamond Sleet.
- Lazarus has conducted a wide range of operations targeting global organizations and enterprises for data theft, system destruction, and cryptocurrency theft, among other objectives.
- Since January 2023 alone, the group is estimated to have carried out …