Radiant — Threat Actor Profile, Campaigns & Targets

Threat entity extracted from intelligence sources

Frequency
3
occurrences
First Seen
November 3, 2025
Last Seen
July 16, 2026

Radiant is a apt_group tracked across 4 threat clusters and 3 intelligence report mentions on ThreatCluster. First observed November 3, 2025; most recent activity July 16, 2026.

Related Threat Clusters

  • Chronus Group Breach Exposes 36 Million Mexican Citizens' Data

    In January 2026, the Chronus Group executed a significant data breach against the Mexican government, compromising 2.3 terabytes of sensitive data from at least 25 agencies. The breach exposed personal information of up…

    2 articles · Updated May 28, 2026
  • FBI Seizes RAMP Cybercrime Forum Used by Ransomware Gangs

    The FBI has seized the RAMP cybercrime forum, a key platform for ransomware operations and other digital crimes. Both the forum's dark web and clearnet domains now display a seizure notice attributed to the FBI,…

    16 articles · Updated January 28, 2026
  • Ransomware Attack in Pennsylvania Exposes Personal and Medical Data

    The Pennsylvania Attorney General's Office confirmed that a ransomware attack in August 2025, attributed to the INC ransomware group, resulted in the theft of personal information, including names, Social Security…

    43 articles · Updated November 18, 2025
  • Cybercriminals Exploit Stolen Insurance Documents for Ransomware Attacks

    Cybercriminals are leveraging stolen insurance documents to customize their ransomware demands, targeting victims with knowledge of their insurance coverage. One group specifically noted their awareness of a victim's…

    2 articles · Updated November 21, 2025

Recent Intelligence Reports

  • Cyberattacks now shape both war and everyday life — www.csis.org · July 16, 2026
  • FBI Takes Down RAMP Ransomware Forum — Infosecurity-Magazine · January 29, 2026
  • "New Low" For Ransomware Cybercriminals An Opportunity For Cyber Insurers? — Mondaq · November 3, 2025

CVSS v3.1 Breakdown