JSAC2025 -Day 2-

JSAC 2025 Day 2 presentations reviewed active threats and defensive responses across multiple domains: phishing and smishing campaigns (including KeepSpy Android malware and PhaaS kits), supply-chain compromises delivering backdoors (PlushDaemon), APT campaigns targeting diplomatic and supply-chain targets (MirrorFace/Operation AkaiRyu), and stealthy ransomware techniques abusing ESXi/NAS for tunneling and persistence; speakers also covered detection analytics, forensic artifacts, and automation/collaboration strategies to accelerate takedown and mitigation.