Home > Threat Actors

Threat Actors

Nasir Security: Threat Actor Profile

May 5, 2026

Attribution: Suspected pro-Iranian hacktivist group First Observed: October 2025 Primary Operations: Data breach claims, infrastructure targeting, hacktivist campaigns, data leaks...

UNC4736 cyber threat actor depicted as a hooded figure with red-lit monitors and North Korean flag in the background

UNC4736: Threat Actor Profile

by m00s3c

April 10, 2026

Also Known As: Citrine Sleet, AppleJeus, Golden Chollima, Gleaming Pisces, Labyrinth Chollima, Nickel Academy, Hidden Cobra Attribution: Bureau 121, Reconnaissance...

Storm-1175 hacker-themed cyber threat image with red digital background

Storm-1175: Threat Actor Profile

by m00s3c

April 9, 2026

Also Known As: Spearwing Attribution: China, financially motivated First Observed: 2023 Primary Operations: Ransomware deployment (Medusa), N-day and zero-day vulnerability...

TeamPCP: Threat Actor Profile

by m00s3c

April 4, 2026

Also Known As: PCPcat, ShellForce, DeadCatx3, PersyPCP, CanisterWorm First Observed: September 2025 Primary Operations: Supply chain compromise, credential theft, ransomware...

Handala Hack: Threat Actor Profile

by m00s3c

April 1, 2026

Also Known As: Void Manticore, Red Sandstorm, Banished Kitten, Storm-842 Attribution: Iran Ministry of Intelligence and Security (MOIS) First Observed:...

ShinyHunters: Threat Actor Profile

by m00s3c

March 30, 2026

Attribution: Financially motivated cybercriminal group, suspected French-speaking members First Observed: 2020 Primary Operations: Large-scale database theft, credential harvesting, data extortion,...