Kaspersky卡巴斯基：2025年第二季度针对工业组织的APT和金融攻击报告（英文版）

Some sophisticated tactics and techniques were reported this quarter in attacks targeting industrial organizations. Nobody is surprised to see 0-day vulnerability exploits being used by APTs in the wild: Lazarus used 0-days in South Korean software in their local campaigns, Stealth Falcon attempted to use a 0-day vulnerability in a legitimate tool by Microsoft against a major defense company in Turkey, and Sednit sent spear-phishing emails exploiting a 0-day XSS vulnerability in MDaemon Email