Activitiesinfo

Our unique Cyber Threat Intelligence aims to determine the ongoing research of APT actors to anticipiate their acitivities. The CTI team is mapping structures of countries and their relationships to identify tensions and possible attack scenarios. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and social media exchanges makes it possible to identify planned attacks. The Threat Intelligence Platform (TIP) illustrates the interest of cybercriminals and state actors in real-time.

2'555'010

Malicious IP addresses

2'492

Actors monitored

64'236

Exploits collected

12'351

0days disclosed

2'257

Exploitings identified

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single items and item collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Prioritizing items becomes possible.

Language

en	22842
zh	644
it	448
de	401
ja	304

Country

US: USA	13379
GB: Great Britain	3529
CN: China	2542
VN: Vietnam	684
DE: Germany	240

Sector

Tor	81
Music	39
Government	34
Military	11
Anonymization	8

Actors

Cobalt Strike	80
Mirai	38
Remcos	20
AsyncRAT	18
Mozi	15

#	CTI	EPSS	Percent	KEV	Vulnerability	Base	Temp	0day	Today	Exp	Cou	CVE
1	9.50	0.00207	42.9%	possible	Axiomatic Bento4 Ap4DataBuffer.h GetData heap-based overflow	5.7	5.5	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2025-0870
2	9.50	0.00068	20.8%	possible	GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service	3.3	3.1	$0-$5k	$0-$5k	Proof-of-Concept	Official fix	CVE-2025-1377
3	9.50	0.00579	68.3%	possible	Open Asset Import Library Assimp File ParsingUtils.h GetNextLine stack-based overflow	7.1	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2025-2151
4	9.50	0.00188	40.6%	possible	quequnlong shiyi-blog upload path traversal	6.3	6.0	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2025-5509
5	9.50	0.00115	30.5%	possible	aaluoxiang oa_system UserpanelController.java image path traversal	5.4	5.2	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2025-5544
6	9.50	0.00026	7%	possible	Portabilis i-Diario justificativas-de-falta cross site scripting	4.1	4.0	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2025-7872
7	9.00	0.75239	98.8%	Verified	D-Link DIR-859 HTTP POST Request hedwig.cgi path traversal	7.6	7.6	$5k-$25k	$0-$5k	Attacked	Not defined	CVE-2024-0769
8	9.00	0.00129	32.5%	possible	AMTT Hotel Broadband Operation System language.php cross site scripting	4.1	4.0	$0-$5k	$0-$5k	Proof-of-Concept	Not defined	CVE-2024-11050
9	8.50	0.00064	19.8%	possible	flusity CMS Dashboard customblock.php loadCustomBlocCreateForm cross site scripting	4.1	4.0	$0-$5k	$0-$5k	Proof-of-Concept	Official fix	CVE-2023-5793
10	8.14	0.00368	58.2%	possible	Open Asset Import Library Assimp CSMLoader.cpp InternReadFile heap-based overflow	7.1	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Official fix	CVE-2025-2592

90 More entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 90 results.

🌐 Custom Analysis

Start your custom analysis of events and vulnerabilities.

◂ PreviousOverviewNext ▸

This view requires CTI permissions

Just purchase a CTI license today!