AhnLab reports AppleSeed malware distribution against organizations related to nuclear power plants. The attack used spear-phishing and document-themed lures to deliver malware associated with Kimsuky-style operations, with AppleSeed functioning as a backdoor for command execution and follow-on control. The report describes how the malware infection chain used disguised files and attacker infrastructure to establish access to targeted environments. It emphasizes that energy-sector organizations should treat document lures and AppleSeed indicators as high-priority threats.