Real-capital social-engineering persona

Jupiter Perpetual Exchange's assessment for RD-F-184 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

F184 (real-capital social-engineering persona, ≥$1M deposits to build credibility) references the C17 pattern exemplified by the Drift exploit: UNC4736 deployed >$1M real capital over 6 months building credibility before the pre-signed-transaction attack on Drift's Security Council. For Jupiter Perps: no evidence of any team-contributor or external-integrator persona having deployed ≥$1M specifically to build credibility ahead of a social-engineering attack on the perps program upgrade authority or Squads multisig signers. The upgrade authority is unverified, preventing full signer-identity review against this pattern. Curator validation required: cross-reference governance-admin-analyst's upgrade authority signer identities against any anomalous ≥$1M deposit pattern in the 180 days preceding any admin change. The Drift comparator is the relevant reference class for this review.

Sources #

URL
North Korean Hackers Attack Drift Protocol in $285M Heist | TRM LabsTRM Labs Drift post-mortem — UNC4736 real-capital persona build-up pattern (F184 comparator)retrieved 2026-05-16

Methodology #

Determine whether a curator-flagged "team contributor" or "external integrator" persona has ≥$1M of attributed real-capital deposits to the target protocol or peer protocols, potentially used to build credibility ahead of a social-engineering attack.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jupiter-perps factor RD-F-184 score gray collected_at 2026-05-16 01:53:11