Russia-linked threat group put ChatGPT to work from lure to payload
A new threat group linked to Russia, named GREYVIBE, has been utilizing AI tools like ChatGPT in its cyber espionage campaigns against Ukraine. Researchers found that GREYVIBE employed AI at various stages of its operations, including malware creation and lure development. Despite their use of advanced technology, the group displayed significant operational security flaws.
- ▪GREYVIBE has targeted military, government, civilian, and business organizations in Ukraine since at least August 2025.
- ▪The group has used spear-phishing emails and fake websites to lure victims into installing malware.
- ▪Researchers noted that GREYVIBE's use of AI tools was operationally integrated rather than isolated.
Opening excerpt (first ~120 words) tap to expand
(function() { let windowUrl = window.location.href; windowUrl = windowUrl.substring(windowUrl.indexOf('?') + 1); let messageElement = document.querySelector('.shareableMessage'); if (windowUrl && windowUrl.includes('code') && windowUrl.includes('expires')) { messageElement.style.display = 'block'; } })(); Research Russia-linked threat group put ChatGPT to work from lure to payload Researchers say 'GREYVIBE' crew used AI tools throughout a campaign targeting Ukrainian military and government Carly Page Carly Page Published fri 29 May 2026 // 12:49 UTC Russia-linked cyber espionage crews appear to be using AI tools to help build malware, spin up infrastructure, and craft lures for attacks on Ukrainian targets.Researchers at WithSecure say a previously undocumented threat group, tracked as…
Excerpt limited to ~120 words for fair-use compliance. The full article is at The Register.
Discussion
0 commentsMore from The Register
