Security

Security Composite

3.6/10

▼-0.507d

14d historyCyber

Cyber5.0▲

Physical1.0▼

Intel5.0▲

Cyber Signals

Threat Trend

Steady

Active Threats

Monitor in agent

Sort

Window

No attributed cyber activity in the sources we track for the current window.

Top CVEs

Identifier, CVSS and exploited-in-the-wild status only. Advisory descriptions stay behind the internal-only legal gate. KEV status attributed by CISA.

Threat Map

Live campaign arcs

Origins and arcs are drawn from tracked threat groups. Nation-state attribution carries the public source it is attributed by, never an unsourced claim.

Active Groups

Tracked nation-state & organized threat groups, reconciled across MITRE ATT&CK, MISP and vendor taxonomies. Filter by region, sector, activity state or motivation. Open any group for aliases, TTPs and the evidence behind each attribution.

Canonical groups reconciled across MITRE ATT&CK, MISP and vendor taxonomies. Filters run on targeted region, sector, activity state and motivation. Open any group for aliases, TTPs and the evidence behind each attribution.

Hall of Fame

Curated recognition

A trust flex, not an open invitation. We recognize researchers who report findings through coordinated disclosure. Placement tier reflects the severity of what was found and fixed, it is not a claim of live production root access.

Responsible Disclosure and Safe Harbor

In scope: only the sanctioned targets we name (Velocity, Academy, Andiamo) and the staging endpoints we provide. No testing against live user data.
Safe harbor: good-faith research within scope is authorized. We will not pursue legal action for testing that follows this policy.

Coordinated: report privately and give us a reasonable window to fix before any public write-up.
No extortion: findings are never conditioned on payment. Demands for money in exchange for silence void safe harbor.

The live submission program is being finalized with counsel. Until it opens, report by email.

Submit a finding