A threat actor is an entity that generates malware and directly influences the IT security of
financial institutions, companies and governments. Threat actors are used to generate malware that interferes with financial transactions, spies on research results, patents and production processes of companies, as well as negotiations and mail traffic at the political level, and affects communication networks
. Threat actors can be individuals, groups and organizations that work externally, internally or in partnership.
External actors generally have no basis of trust, but internal and partnership actors have some basis of trust.