PROBABLYPWNED
Home/Threat Intel

Threat Intel

203 articles

INTERPOL Operation First Light Nets 5,800 Arrests, $293M Seized
Threat Intelligence4 min read

INTERPOL Operation First Light Nets 5,800 Arrests, $293M Seized

INTERPOL's Operation First Light 2026 led to 5,811 arrests across 97 countries, seizing $293 million from social engineering fraud networks including BEC, romance scams, and crypto laundering operations.

Alex KowalskiJul 11, 2026
Armored Likho APT Hits Power Grids With AI-Generated Malware
Threat Intelligence3 min read

Armored Likho APT Hits Power Grids With AI-Generated Malware

New threat group Armored Likho targets government agencies and power sectors in Russia, Brazil, and Kazakhstan using BusySnake Stealer—malware with AI-generated loader code and reverse SSH tunneling capabilities.

Alex KowalskiJul 6, 2026
Phantom Squatting: Attackers Weaponize AI-Invented URLs
Threat Intelligence4 min read

Phantom Squatting: Attackers Weaponize AI-Invented URLs

Unit 42 finds attackers registering domains that LLMs hallucinate, then hosting phishing kits to intercept AI-directed traffic. Montana Empire kit caught 23 days after prediction.

Alex KowalskiJul 2, 2026
Conti Ransomware Developer Pleads Guilty, Faces 20 Years
Threat Intelligence4 min read

Conti Ransomware Developer Pleads Guilty, Faces 20 Years

Ukrainian national Oleksii Lytvynenko admits to developing loader malware for the Conti ransomware gang after extradition from Ireland. Sentencing set for September 2026.

Alex KowalskiJun 16, 2026
Iran-Linked Handala Claims Breach of California Water Utility
Threat Intelligence4 min read

Iran-Linked Handala Claims Breach of California Water Utility

Handala threat group claims to have compromised California Water Service, publishing 5GB of customer data. Security experts assess the group reached billing systems and GPS servers but likely cannot disrupt water operations.

Threat Intel DeskJun 14, 2026
Phantom Taurus: Chinese APT Deploys NET-STAR Malware Suite
Threat Intelligence4 min read

Phantom Taurus: Chinese APT Deploys NET-STAR Malware Suite

Unit 42 exposes Phantom Taurus, a China-aligned APT targeting governments and telecoms across Africa, the Middle East, and Asia with custom NET-STAR backdoors for IIS servers.

Threat Intel DeskJun 6, 2026
SideCopy Targets Afghanistan's Finance Ministry With XenoRAT
Threat Intelligence4 min read

SideCopy Targets Afghanistan's Finance Ministry With XenoRAT

Operation XENOFISCAL delivers customized XenoRAT to Afghanistan's Ministry of Finance and 34 provincial revenue directorates. The Pakistan-linked APT used Pashto-language lures and bulletproof European hosting.

Threat Intel DeskMay 31, 2026
GREYVIBE APT Uses ChatGPT and Gemini to Target Ukraine
Threat Intelligence4 min read

GREYVIBE APT Uses ChatGPT and Gemini to Target Ukraine

Russian-linked GREYVIBE threat actor deploys AI-generated malware including PhantomRelay and LegionRelay against Ukrainian military and government targets. WithSecure analysis reveals the group's OPSEC failures.

Threat Intel DeskMay 30, 2026
FBI: Extortion Gang Walks Into Law Firms Posing as IT Staff
Threat Intelligence4 min read

FBI: Extortion Gang Walks Into Law Firms Posing as IT Staff

Silent Ransom Group escalates from vishing to physical infiltration. FBI FLASH alert warns 38+ law firms already breached, with operatives plugging USB drives into office computers.

Threat Intel DeskMay 28, 2026