SECULETTER RESEARCH · BLOG
Our Research team publishes deep technical analyses of document file threats — CVEs dissected, public-sector campaigns reverse-engineered, CDR techniques explained. Every post cites primary sources only: CVE IDs, agency reports, official statistics.
All 30+ posts are live in Korean. Modern browsers translate them well — CVE IDs, file-format names, and code blocks stay intact. The fastest way to see how SecuLetter Research dissects real document threats.
Topics include HWP PostScript attacks targeting Korean public-sector entities, CVE-level analyses of recent Office macro campaigns, and CDR engineering deep-dives on OOXML and PDF object handling.
We're translating the most-requested posts into English now. The first batch covers HWP threat anatomy, sandbox-evasion case studies, and the MARS engine pipeline. Tell us where to send them and we'll deliver as they go live.
We send English digests on publish. No newsletter cadence, no marketing blasts — new technical posts only.
EDITORIAL STANDARDS
SecuLetter Research has the same standards in English as in Korean.
CVE IDs, KISA reports, NIS advisories, IBM X-Force, MITRE ATT&CK. We link to the originals. Vendor whitepapers are never used as sole evidence.
Posts include disassembled streams, file-spec excerpts, and reproducible samples where safe. No talking points without binary evidence.
We never name another vendor by brand. Industry categories only — and only when the comparison is technical, not commercial.
Tell us which Korean post you'd want in English — we prioritize the translation queue by reader demand. Or jump straight to a SecuLetter PoC on your own files.
Korean blog: 한국어 블로그 보기 →
