正在显示 UNC4736 (Citrine Sleet) 的 5 个里程碑
20261 个里程碑
5
1 4月 2026
Drift Protocol Heist
After a six-month intelligence operation, the group executes an attack on Drift Protocol, stealing approximately $270 million in digital assets.
www.coindesk.com/markets/2026/04/05/drift-says-usd270-million-exploit-was-a-six-month-north-korean-intelligence-operation20242 个里程碑
4
1 10月 2024
Radiant Capital Heist
The group executes a heist targeting Radiant Capital, a DeFi lending platform, resulting in the theft of approximately $50 million in cryptocurrency.
www.scworld.com/brief/north-korean-apt-blamed-for-radiant-capital-crypto-heist3
1 8月 2024
Chromium Zero-Day Exploit Campaign
Microsoft reports on Citrine Sleet exploiting a zero-day vulnerability (CVE-2024-7971) in the Chromium browser engine to compromise targets in the crypto sector.
www.microsoft.com/en-us/security/blog/2024/08/30/north-korean-threat-actor-citrine-sleet-exploiting-chromium-zero-day/20231 个里程碑
2
1 4月 2023
3CX Software Supply Chain Compromise Identified
Mandiant formally identifies UNC4736 as the group behind the double supply chain compromise of 3CX's VoIP software, initiated via a trojanized X_TRADER app.
attack.mitre.org/campaigns/C0057/20181 个里程碑
1
1 1月 2018
Operation AppleJeus Campaign Begins
The 'Operation AppleJeus' campaign begins, marking a concerted effort by North Korean actors to target the cryptocurrency industry with trojanized applications.