APT5 - China

APT29 - Russia

APT35 - Iran

APT38 - North Korea

Associated malware: BRIGHTCREST, SWEETCOLA, SPIRITBOX, PALEJAB, WIDERIM, WINVAULT, HAPPYSAD, BIRDWORLD, FARCRY, CYFREE, FULLSILO, HELLOTHEWORLD, HAZELNUT, GIF89A, SCREENBIND, SHINYFUR, TRUCKBED, LEOUNCIA, FREESWIM, PULLTAB, HIREDHELP, NEDDYHORSE, PITCHFORK, BRIGHTCOMB, ENCORE, TABCTENG, SHORTLEASH, CLEANACT, BRIGHTCYAN, DANCEPARTY, HALFBACK, PUSHBACK, COOLWHIP, LOWBID, TIGHTROPE, DIRTYWORD, AURIGA, KEYFANG, Poison Ivy

Associated malware: Kim Jung Un's large and prolific group in North Korea uses a variety of custom malware families, including backdoors, tunnelers, dataminers, and destructive malware to steal millions of dollars from financial institutions and render victim networks inoperable.

Word is China, North Korea, Russia or Iran is going to hack all the customers data from Amazon.

AI WARFARE SYSTEMS uses a different reconfigured binary code and extremely complicated time sensitive hashstring encryptions. They are nowhere at the moment or secretly running remotely through different satellites.