An increasing number of cybercrime groups have adopted techniques and procedures traditionally used by state-sponsored actors. This trend has caught many organizations unprepared, especially small and medium-sized businesses. The North Korean Lazarus group, for example, is an unusual APT group that used to engage in espionage and sabotage, but has transitioned to financially motivated attacks. The recruitment of cybercriminals into intelligence operations can obviously lead to an exchange of more sophisticated techniques, tactics and procedures (TTPs) that can then be used in criminal activities.”]