APT / THREAT GROUP
BRAIN
2
aliases
Last seen:Mar 17, 2026
Intelligence Profile
Malware family tracked by Malpedia. ID: win.brain
Threat Analysis
BRAIN is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning BRAIN
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
The Hacker News· Jun 17, 2026
Fifteen JetBrains Marketplace Plugins Found Stealing API Keys
Infosecurity Magazine· Jun 17, 2026
Malicious JetBrains Marketplace plugins steal AI API keys from developers
BleepingComputer· Jun 16, 2026
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
The Hacker News· May 19, 2026
AI Firm Braintrust Prompts API Key Rotation After Data Breach
SecurityWeek· May 8, 2026
PCPJack Campaign Boots TeamPCP Off Compromised Machines
Infosecurity Magazine· May 8, 2026
CISA Adds Eight Known Exploited Vulnerabilities to Catalog
CISA Alerts· Apr 20, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
BRAINwin.brain
External Intelligence
Malpedia: win.brainResearch Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.