The source summarizes an April 2022 FBI, CISA, and Treasury advisory on North Korean cyber operations against cryptocurrency and blockchain organizations. The agencies identify the activity as Lazarus Group, APT38, BlueNoroff, or Stardust Chollima and say the targets include exchanges, DeFi protocols, trading firms, and holders of large crypto or NFT assets. The reported intrusion pattern uses tailored spearphishing and trojanized crypto applications, including TraderTraitor apps built with Node.js and Electron, to deploy Manuscrypt or other RAT payloads. Once inside a victim network, the actors seek private keys, exploit security gaps, and initiate fraudulent blockchain transactions.