Greyvibe — Threat Actor Profile, Campaigns & Targets

Threat entity extracted from intelligence sources

Frequency
5
occurrences
First Seen
May 29, 2026
Last Seen
May 30, 2026

Greyvibe is a apt_group tracked across 3 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed May 29, 2026; most recent activity May 30, 2026.

Related Threat Clusters

  • GREYVIBE: AI-Driven Cyberattacks Targeting Ukraine by Russian Hackers

    The GREYVIBE group, a previously unknown Russian hacking entity, has been actively targeting Ukrainian military, government, and civilian sectors since August 2025. Utilizing sophisticated AI tools like ChatGPT and…

    10 articles · Updated May 29, 2026
  • Massive Password Theft: 624 Million Credentials Compromised

    A significant cybersecurity breach has resulted in the theft of 624 million passwords, attributed to an infostealer malware campaign. The malware targets various systems, compromising user credentials across multiple…

    14 articles · Updated June 2, 2026
  • Malware Delivered via ChatGPT Links in New Cyber Attack Campaign

    Threat actors are exploiting ChatGPT's content-sharing feature to deliver malware through a campaign dubbed 'LLMShare.' This attack involves creating fake outage pages on the legitimate chatgpt.com domain, tricking…

    22 articles · Updated May 29, 2026

Recent Intelligence Reports

  • GREYVIBE: Russische Hackergruppe nutzt KI für Angriffe auf Ukraine — Borncity · May 30, 2026
  • Russia — Csoonline · May 30, 2026
  • Hackers are now using ChatGPT share links to deliver malware — Neowin · May 29, 2026
  • Meet GREYVIBE, the Russia — Securityaffairs.Co · May 29, 2026
  • GREYVIBE Threat Actors Use ChatGPT and Google Gemini to Scale Cyberattack Operations — Gbhackers · May 29, 2026

CVSS v3.1 Breakdown