The Threat Landscape
Real-time cybersecurity data from 17 intelligence sources. CVE trends, ransomware tracking, malware analysis, botnet infrastructure, and global exposure data.
Latest CISA Security Advisories
Recent cybersecurity advisories from the U.S. Cybersecurity and Infrastructure Security Agency.
Known Exploited Vulnerabilities
Vulnerabilities confirmed to be actively exploited in the wild, tracked by the U.S. Cybersecurity and Infrastructure Security Agency.
KEV Additions by Year
Most Affected Vendors (KEV)
Recently Added
Active Threat Groups
Tracking 357 ransomware groups and their recent activity.
Recent Ransomware Activity
Envision Unlimited
View group profile →robroy.com
View group profile →iac-intl.com
View group profile →Inter Power Engineering
View group profile →The commune of Castries
View group profile →Sintax
View group profile →Sun Dolphin Boats
View group profile →Bronken's Dist
View group profile →Alan F Burke
View group profile →Hum & Jacoby
View group profile →Creative Smiles Pediatric Dentistry
View group profile →AMHWA Biopharm Co., Ltd.
View group profile →SF Smile Doctor
View group profile →Bishop Arts Dental PLLC
View group profile →Top Notch Dentistry of Dallas
View group profile →What's exposed right now
Real-time data from Shodan on internet-facing services and attack surface exposure worldwide.
Global SSH Exposure Rankings
Internet Scanning Intelligence
5 of 5 blacklisted IPs are also observed performing internet-wide scanning by GreyNoise.
Exploit Prediction Scores
CVEs with the highest probability of exploitation in the next 30 days, scored by FIRST.org's Exploit Prediction Scoring System.
APT Threat Explorer
Top Threat Origins
Showing all 503 threat groups
Source: ETDA Threat Group Cards · 503 groups indexed
Malware, abuse & detection intelligence
Unified threat feed from URLhaus, AbuseIPDB, VirusTotal, and Malware Bazaar — malware URLs, blacklisted IPs, and recent malware samples.
Malware Distribution
28% of tracked URLs are currently serving malware
Command & Control Infrastructure
Active botnet C2 servers tracked by Feodo Tracker. These servers control malware-infected systems worldwide.
Global Breach Landscape
Tracking 1,015 known data breaches affecting 17.7 billion accounts worldwide.
Most Recent Breaches Added
Recently published vulnerabilities
The latest CVE publications from CIRCL — newly disclosed vulnerabilities that may affect your infrastructure.
No description
No description
No description
No description
No description
Leantime - JSON-RPC API Broken Access Control via users.getUser
ChatterBot: Symlink-Following Arbitrary Write via UbuntuCorpusTrainer
HTTP Host header vulnerability in WebClient and WebScheduler web apps
This is what we protect you against
The threat landscape evolves daily. Make sure your security does too.
Source Health Dashboard
Build: 2026-07-09T19:23:39.504Z | 15/17 sources active