From zdnet.com
Microsoft said that over the past year it notified nearly 10,000 users that they’d been targeted or compromised by nation-state hacking groups.
The company didn’t just blast out random statistics, but also made named names. Microsoft said most of the attacks came from state-sponsored hackers from Iran, North Korea, and Russia.
More precisely, the Iran attacks came from groups Microsoft calls Holmium and Mercury, the North Korean attacks came from a group called Thallium, and the Russian attacks came from groups called Yttrium and Strontium.