A Russian threat group known as GreyVibe has been utilizing AI tools like ChatGPT and Google Gemini to enhance their cyberespionage campaigns targeting Ukrainian and Ukraine-related organizations since August 2025. Their tactics include sophisticated phishing attacks and custom malware development, indicating a blend of state-affiliated and potentially cybercriminal elements within the group.
GreyVibe hackers are utilizing AI tools like ChatGPT and Google Gemini to create sophisticated lures and custom malware, targeting Ukrainian and Ukraine-related organizations. As a cybersecurity professional, consider leveraging threat intelligence on these AI-assisted tactics and the provided indicators of compromise (IoCs) from WithSecure to enhance your organization's defenses and incident response strategies against similar state-aligned or cybercriminal threats.