Threat Intelligence

The Threat Landscape

Real-time cybersecurity data from NIST NVD, CISA, ransomware trackers, and internet scanning platforms. Updated daily.

Last updated: March 24, 2026 at 10:19 PM | 6/8 sources active
CVEs (2026)
0
Source: NIST NVD (est.)
CISA KEV Total
0
Source: CISA
Ransomware Groups
0
Source: ransomware.live
Avg. Exploit Time
5d
Source: Mandiant M-Trends
CISA KEV

Known Exploited Vulnerabilities

Vulnerabilities confirmed to be actively exploited in the wild, tracked by the U.S. Cybersecurity and Infrastructure Security Agency.

KEV Additions by Year

2026
67
2025
245
2024
186
2023
187
2022
555
2021
311

Source: CISA Known Exploited Vulnerabilities Catalog

Most Affected Vendors (KEV)

1. Microsoft
362 CVEs
2. Apple
93 CVEs
3. Cisco
86 CVEs
4. Adobe
76 CVEs
5. Google
70 CVEs
6. Oracle
42 CVEs
7. Apache
38 CVEs
8. Ivanti
32 CVEs
9. VMware
26 CVEs
10. D-Link
25 CVEs

Source: CISA KEV

Recently Added

CVE-2025-32432 Craft CMS — Craft CMS
2026-03-20
CVE-2025-54068 Laravel — Livewire
2026-03-20
CVE-2025-43510 Apple — Multiple Products
2026-03-20
CVE-2025-43520 Apple — Multiple Products
2026-03-20
CVE-2025-31277 Apple — Multiple Products
2026-03-20
CVE-2026-20131 Cisco — Secure Firewall Management Center (FMC)
2026-03-19
CVE-2025-66376 Synacor — Zimbra Collaboration Suite (ZCS)
2026-03-18
CVE-2026-20963 Microsoft — SharePoint
2026-03-18
CVE-2025-47813 Wing FTP Server — Wing FTP Server
2026-03-16
CVE-2026-3910 Google — Chromium V8
2026-03-13
Ransomware

Active Threat Groups

Tracking 327 ransomware groups and their recent activity.

Recent Ransomware Activity

shinyhunters 2026-03-24 20:35:32.901048

Berkadia Commercial Mortgage, LLC. (berkadia.com)

qilin 2026-03-24 19:29:22.035892

Aroostook Mental Health Services

play 2026-03-24 19:27:24.729405

All Real Estate Title Solutions

play 2026-03-24 19:26:47.517403

Roxiticus Golf Club

play 2026-03-24 19:25:47.913100

Ascent Asset Group

play 2026-03-24 19:25:02.090019

Capital Wholesale Drug

play 2026-03-24 19:24:15.337531

Block Engineering

play 2026-03-24 19:23:35.957864

Window & Door Design Center of Florida

incransom 2026-03-24 19:53:52.979868

cerboniservices.com

dragonforce 2026-03-24 14:07:26.764620

M3 Group

incransom 2026-03-24 19:52:44.929327

jenningsk12.org

crypto24 2026-03-24 08:48:37.748276

Estudio O'Farrell

akira 2026-03-24 12:58:16.834841

The Russell's Law Firm

akira 2026-03-24 13:59:31.319751

Gustavo Preston

akira 2026-03-24 13:59:35.498675

French Engineering

Source: ransomware.live

Internet Exposure

What's exposed right now

Real-time data from Shodan on internet-facing services and attack surface exposure worldwide.

SSH Exposed
0
Port 22
RDP Exposed
0
Port 3389
MongoDB Exposed
0
Port 27017
ICS/SCADA
0
Industrial systems

Top Countries by SSH Exposure

1. United States
5,822,224
2. Germany
2,155,828
3. China
2,146,565
4. Netherlands
748,697
5. Singapore
703,013
6. Hong Kong
684,296
7. France
671,108
8. United Kingdom
575,750
9. Japan
558,629
10. Canada
349,659

Source: Shodan

Internet Scanning Activity

CLEAN 1.1.1.1 (Cloudflare DNS)

This IP is not observed performing internet-wide scanning.

Classification: benign

Name: Cloudflare Public DNS

Source: GreyNoise

EPSS

Exploit Prediction Scores

CVEs with the highest probability of exploitation in the next 30 days, scored by FIRST.org's Exploit Prediction Scoring System.

1 CVE-2023-23752
94.5%
2 CVE-2017-8917
94.5%
3 CVE-2017-1000353
94.5%
4 CVE-2018-7600
94.5%
5 CVE-2021-22986
94.5%
6 CVE-2019-17558
94.5%
7 CVE-2018-13379
94.5%
8 CVE-2019-3396
94.5%
9 CVE-2022-46169
94.5%
10 CVE-2020-1938
94.5%

Source: FIRST.org EPSS

Malware & Abuse

Active threats on the internet

Malware distribution URLs and reported malicious IPs from community intelligence platforms.

Malware Distribution (URLhaus)

0
URLs Online Now
0
Total Tracked

Source: URLhaus by abuse.ch

This is what we protect you against

The threat landscape evolves daily. Make sure your security does too.

Get a Security Assessment or book a free call