| SYMBOL | COMMON_NAME | aka. SYNONYMS |
UNC5537 is a financially motivated threat actor targeting Snowflake customer databases. They use stolen credentials obtained from infostealer malware to access and exfiltrate large volumes of data. The compromised accounts lack multi-factor authentication, allowing UNC5537 to conduct data theft and extortion.
There are currently no families associated with this actor.
There are currently no references.