diff --git a/Threat Reports/April2023.md b/Threat Reports/April2023.md
new file mode 100644
index 0000000..6177b0c
--- /dev/null
+++ b/Threat Reports/April2023.md	
@@ -0,0 +1,6 @@
+#### `April Threat Reports`
+| Date | Source | Threat(s) | URL |
+| --- | --- | --- | --- |
+| 03 APR | CERT-UA | Use of unlicensed Microsoft Office programs as a vector of primary compromise of ICS (CERT-UA#6322) | [cert.gov.ua](https://cert.gov.ua/article/4279195) |
+| 28 APR | CERT-UA | APT28 cyberattack: distribution of emails with "instructions" on "updating the operating system" (CERT-UA#6562)| [cert.gov.ua](https://cert.gov.ua/article/4492467) |
+| 30 APR | CERT-UA | WinRAR as a "cyberweapon". Destructive cyberattack UAC-0165 (probably Sandworm) on the public sector of Ukraine using RoarBat (CERT-UA#6550) | [cert.gov.ua](https://cert.gov.ua/article/4501891)|
\ No newline at end of file
diff --git a/Threat Reports/June2023.md b/Threat Reports/June2023.md
new file mode 100644
index 0000000..ce55729
--- /dev/null
+++ b/Threat Reports/June2023.md	
@@ -0,0 +1,5 @@
+#### `June Threat Reports`
+| Date | Source | Threat(s) | URL |
+| --- | --- | --- | --- |
+| 02 JUN | CERT-UA | Sending SMS messages with the subject of subpoenas using the fraudulent alpha name "SUDpovistka" (CERT-UA#6804 | [cert.gov.ua](https://cert.gov.ua/article/4789582) |
+| 05 JUN | CERT-UA | UAC-0099: cyberespionage against state organizations and media representatives of Ukraine (CERT-UA#6710)| [cert.gov.ua](https://cert.gov.ua/article/4818341) |
diff --git a/Threat Reports/May2023.md b/Threat Reports/May2023.md
new file mode 100644
index 0000000..c1c828a
--- /dev/null
+++ b/Threat Reports/May2023.md	
@@ -0,0 +1,7 @@
+#### `May Threat Reports`
+| Date | Source | Threat(s) | URL |
+| --- | --- | --- | --- |
+| 05 MAY | CERT-UA | Reverting UAC-0006: Mass distribution of SmokeLoader using "accounts" theme (CERT-UA#6613) | [cert.gov.ua](https://cert.gov.ua/article/4555802) |
+| 22 MAY | CERT-UA | Espionage activity UAC-0063 in relation to Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Israel, Iran, India (CERT-UA#6549)| [cert.gov.ua](https://cert.gov.ua/article/4697016) |
+| 29 MAY | CERT-UA | Cyberattack UAC-0006: Distribution of SmokeLoader using emails and "accounts" theme (CERT-UA#6757) | [cert.gov.ua](https://cert.gov.ua/article/4755642)|
+