Menu
Browse

Cyber Threat Actor: ProjectDump

Actor Type Location Known Incidents
 Icon
Criminal
China
2 incidents
Profile

ProjectDump is a threat actor known by the alias ProjectDump and has been associated with operations originating from China. The actor’s public profile is limited to a few disclosed incidents, with no additional aliases or alternative names reported in the available sources. Geolocation information points to China, although no further details about infrastructure or operational bases have been made public. The actor has not been linked to any specific state‑sponsored program or criminal consortium in the open‑source record.

In December 2015 ProjectDump compromised the website bluebooktrader.com, extracting a database containing 6,187 usernames and their corresponding hashed passwords. The dump was subsequently released online, exposing the credentials of the site’s users to potential credential‑stuffing attacks. This incident demonstrates the actor’s capability to gain unauthorized access to web applications and to exfiltrate authentication data for further misuse. No information about the specific vulnerabilities exploited, malware families employed, or tools utilized during the breach has been disclosed in the referenced material.

The available evidence does not describe any ransomware deployment, espionage‑oriented data collection, or disruptive actions beyond the credential dump. Consequently, the actor’s typical targeting appears to focus on online services that store user authentication information, with a clear emphasis on harvesting credentials. Attribution to a particular geographic region is based solely on the stated location of China, and no definitive links to state actors or organized crime groups have been established in the public domain. The bluebooktrader.com operation remains the most concrete example of ProjectDump’s publicly reported activity.

Incidents
Attributed incidents available to members
2 incidents
Sources
Sources available to members
1 source