mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
[threat-actors] Add TraderTraitor
This commit is contained in:
parent
c0fd66e3cd
commit
a1f64c63de
1 changed files with 17 additions and 0 deletions
|
@ -12671,6 +12671,23 @@
|
||||||
},
|
},
|
||||||
"uuid": "def3c4e4-9d59-478f-8895-d3850cfa99c3",
|
"uuid": "def3c4e4-9d59-478f-8895-d3850cfa99c3",
|
||||||
"value": "UAC-0094"
|
"value": "UAC-0094"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "TraderTraitor targets blockchain companies through spear-phishing messages. The group sends these messages to employees, particularly those in system administration or software development roles, on various communication platforms, intended to gain access to these start-up and high-tech companies. TraderTraitor may be the work of operators previously responsible for APT38 activity.",
|
||||||
|
"meta": {
|
||||||
|
"aliases": [
|
||||||
|
"Jade Sleet",
|
||||||
|
"UNC4899"
|
||||||
|
],
|
||||||
|
"country": "KP",
|
||||||
|
"refs": [
|
||||||
|
"https://www.mandiant.com/resources/blog/north-korea-supply-chain",
|
||||||
|
"https://us-cert.cisa.gov/ncas/alerts/aa22-108a",
|
||||||
|
"https://www.mandiant.com/resources/blog/north-korea-cyber-structure-alignment-2023"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "825abfd9-7238-4438-a9e7-c08791f4df4e",
|
||||||
|
"value": "TraderTraitor"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 292
|
"version": 292
|
||||||
|
|
Loading…
Reference in a new issue