JSAC2025 -Day 1-

JSAC 2025 Day 1 technical summaries describe numerous active and recent campaigns by multiple nation-state affiliated APTs and cybercriminal actors targeting governments, telecoms, manufacturing, academia, and critical infrastructure across the Asia-Pacific and beyond; presentations covered malware families (e.g., GRAYRABBIT, CUNNINGPIGEON, SSHTD, KimaLogger), supply-chain and zero-day exploitation, IoC lifecycle management, use of compromised edge devices and fast-flux/proxy infrastructures, and operational TTPs including spear-phishing, SEO poisoning, and living-off-the-land techniques.