KP

TraderTraitorTraderTraitor

Also known as: Jade Sleet · UNC4899 · Pukchong · TraderTraitor

Origin
KP
Known aliases
4

Profile

TraderTraitor targets blockchain companies through spear-phishing messages. The group sends these messages to employees, particularly those in system administration or software development roles, on various communication platforms, intended to gain access to these start-up and high-tech companies. TraderTraitor may be the work of operators previously responsible for APT38 activity.

Aliases· 4

Jade SleetUNC4899PukchongTraderTraitor

References

  1. https://www.mandiant.com/resources/blog/north-korea-supply-chain
  2. https://us-cert.cisa.gov/ncas/alerts/aa22-108a
  3. https://www.mandiant.com/resources/blog/north-korea-cyber-structure-alignment-2023
  4. https://cloud.google.com/blog/topics/threat-intelligence/cyber-threats-targeting-brazil

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TA406
Actor
PoisonSeed
Actor
UNC6691
Actor
ChainedShark
Actor
UNC4736
Actor
CryptoChameleon
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.