Google Threat Intelligence Group — Cyber Attacks, Breaches & Threat Activity

Threat entity extracted from intelligence sources

Frequency
3
occurrences
First Seen
November 20, 2025
Last Seen
December 17, 2025

Google Threat Intelligence Group is a organization tracked across 4 threat clusters and 3 intelligence report mentions on ThreatCluster. First observed November 20, 2025; most recent activity December 17, 2025.

Related Threat Clusters

  • Gainsight Apps Breach Exposes Data of Over 200 Salesforce Customers

    A significant supply chain attack has compromised Salesforce-stored data from more than 200 companies through applications published by Gainsight. Salesforce confirmed unauthorized access to customer data and is…

    30 articles · Updated November 23, 2025
  • China's Brickstorm Malware Compromises US Critical Networks

    Chinese state-sponsored hackers have maintained long-term access to critical US networks, utilizing Brickstorm malware for data theft and infiltration. The campaign, which has affected at least eight government services…

    10 articles · Updated December 4, 2025
  • Data Breach Affects Over 200 Companies via Gainsight Integration with Salesforce

    Hackers compromised Salesforce-stored data from more than 200 companies through a supply chain attack involving Gainsight applications. Google confirmed the breach, stating that unauthorized access to customer data was…

    44 articles · Updated November 27, 2025
  • SonicWall SMA1000 Zero-Day Vulnerability Disclosed

    SonicWall has alerted customers to a local privilege escalation vulnerability (CVE-2025-40602) in the SMA1000 Appliance Management Console, which has been exploited in the wild in conjunction with another vulnerability…

    5 articles · Updated December 17, 2025

Recent Intelligence Reports

  • Sonicwall warns of new SMA1000 zero — Bleepingcomputer · December 17, 2025
  • PRC spies Brickstormed their way into critical US networks and remained hidden for years — Theregister · December 4, 2025
  • Salesforce investigating campaign targeting customer environments connected to Gainsight app — Cybersecuritydive · November 20, 2025

CVSS v3.1 Breakdown