diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index ce52508..c600a8b 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -13989,6 +13989,17 @@
       },
       "uuid": "6ea73b7f-b2e5-4e6d-a1ff-705f91175613",
       "value": "Gray Sandstorm"
+    },
+    {
+      "description": "ThreatSec is a hacktivist group that has targeted various organizations, including internet service providers in Gaza. They claim to fight for the rights and freedom of the oppressed and do not prioritize monetary gain. The group is part of the \"Five Families\" consortium, which includes other hacktivist groups such as GhostSec and Stormous. ThreatSec has been involved in cyberattacks, data breaches, and ransomware activities.",
+      "meta": {
+        "refs": [
+          "https://www.resecurity.com/blog/article/ransomedvc-in-the-spotlight-what-we-know-about-the-ransomware-group-targeting-major-japanese-businesses",
+          "https://socradar.io/the-five-families-hacker-collaboration-redefining-the-game/"
+        ]
+      },
+      "uuid": "179deaab-12d2-4371-b499-51b925546a22",
+      "value": "Threatsec"
     }
   ],
   "version": 296