Groups are a collection of related intrusion activities which are
identified by a common name by the security analysts. Different analytic terms such as threat groups,
threat actors, intrusion sets etc., are used by the analysts to track clusters of activities.
Different organizations use different names to track similar activities, therefore, some groups may have
multiple names for similar activities. The term Group is used to refer to the clusters of activities. Overlaps between the names are tracked
on the basis of publicly reported associations, referred to as “Associated Groups”.
You can click on the map to know the associated groups of a certain country.
Click a country to show its attributed groups.