A shift in operational pattern of the infamous Vietnam-aligned APT group

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2025 and Q1 2026

ESET researchers describe new tools and techniques that the Webworm APT group recently added to its arsenal

ESET researchers uncovered new activities attributed to FrostyNeighbor, updating its compromise chain to support the group’s continual cyberespionage operations

ESET researchers uncovered fraudulent apps on Google Play that claim to provide the call history “for any number” and had been downloaded…

ESET researchers have investigated an ongoing attack by the ScarCruft APT group that targets the Yanbian region via backdoor-laced Windows and Android…

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions

ESET researchers discover another iteration of NGate malware, this time possibly developed with the assistance of AI

ESET researchers dive deeper into the EDR killer ecosystem, disclosing how attackers abuse vulnerable drivers

The resurgence of one of Russia’s most notorious APT groups