Operation Magnus — Campaign Analysis & Threat Activity

Threat entity extracted from intelligence sources

Frequency
6
occurrences
First Seen
February 19, 2026
Last Seen
March 26, 2026

Operation Magnus is a threat campaign tracked across 2 threat clusters and 6 intelligence report mentions on ThreatCluster. First observed February 19, 2026; most recent activity March 26, 2026.

Related Threat Clusters

  • Second Defendant in RedLine Infostealer Case Extradited to U.S.

    Hambardzum Minasyan, an Armenian national, was extradited to the U.S. on March 23, 2026, to face charges related to his involvement in the RedLine infostealer malware operation. He appeared in federal court in Austin,…

    7 articles · Updated March 26, 2026
  • Criminals Launch RAT-as-a-Service via Fake RMM Vendor

    Cybercriminals created a fake remote management vendor that sells a remote access trojan (RAT) disguised as legitimate enterprise software for $300 a month. This scheme exploits the growing trend of using remote…

    7 articles · Updated February 19, 2026

Recent Intelligence Reports

  • Suspected RedLine infostealer malware admin extradited to US — Bleepingcomputer · March 26, 2026
  • RedLine Infostealer Network’s Second Defendant Now Faces a U.S. Court — Thecyberexpress · March 26, 2026
  • Alleged RedLine infostealer conspirator extradited to US — Cyberscoop · March 25, 2026
  • New malware-as-a-service fronts as legit RMM provider — Scworld · February 20, 2026
  • RAT disguised as an RMM costs crims $300 a month — Theregister · February 19, 2026
  • Crims create fake remote management vendor that actually sells a RAT — Theregister · February 19, 2026

CVSS v3.1 Breakdown