Threat intel is utterly impossible. Look at this. All from a fake browser update. One person, just clicking on a website causes all of this. How do you create a threat model for this shit?
https://thehackernews.com/2025/11/romcom-uses-socgholish-fake-update.html?m=1