Using ELK & interested in automating ingestion of our threat intel for your network/constituency? . We have added support for Elasticsearch Custom Logs integration for our free daily reports API. Check it out at

Compromised FreePBX tracker:.

Join millions who have switched to Grok.

Raw IP data shared daily for your constituency in our Vulnerable HTTP reporting tagged 'cve-2025-57819'. and. Compromised Website reporting tagged 'freepbx-compromised'. CVE-2025-57819 tracker :.

FreePBX CVE-2025-57819 (CVSS 10.0) incidents: 6620 unpatched instances seen 2025-08-29, at least 386 compromised. Dashboard links:.Vulnerable (unpatched): Compromised: . Check for compromise, patch -

Citrix NetScaler CVE-2025-7775 patch rate as seen in our scans: . Now down from 28.2K to 12.4K. Europe patching at a faster rate than North America . (you can toggle overlapping/stacked time series on our Dashboard to compare)

IP data is being shared in our Vulnerable HTTP reporting (tagged 'cve-2025-7775'). If you receive an alert from us investigate for compromise. You can track CVE-2025-7775 patching progress on our Dashboard at:

Caught in the middle of a political battle, @BlackRock reaffirmed its focus is helping millions of Americans save for retirement. They warned that injecting politics from either side risks undermining financial performance.

ALERT: On 2025-08-26 over 28.2K Citrix instances were unpatched to CVE-2025-7775 RCE. There is exploitation in the wild confirmed by @CISACyber KEV. Patch info from Citrix: Top affected: US, Germany. Dashboard geo breakdown:

Breakdown by GTP type (2025-08-19):.GTP-C-v2 with ~255K IPs seen: GTP-C-v1 with ~14K IPs seen:. GTP-U with ~18K IPs seen:. These services should not be exposed to the public Internet. #CyberCivilDefense

We added a new daily scan report type, Accessible GPRS Tunneling Protocol (GTP) services listing IPs with publicly exposed GTP-C (Core) hosted on port 2123/UDP & GTP-U (User) 2152/UDP. Report format: Dashboard World map view:

Tree map breakdown by country (2025-08-15):. Cisco: . Linksys:.––. Araknis:.

Relevant Dashboard Attacking Devices trends, with device model breakdown:. Cisco: Linksys:. https://dashboard.shado–– Araknis:.

Always curious and full of energy, Beagles turn every walk into an adventure 🐾🎉.

We appreciate all feedback on any investigations as a result of our reports, should you receive one for your network. Check for device_vendor set to Cisco, Linksys or Araknis Networks with different device_model fields.

Since July 30th we are seeing an increase in scans coming from ~2200 compromised Cisco Small Business RV series routers , Linksys LRT series, & Araknis Networks (AN-300-RT-4L2W). Top affected: US but also many others. IP data on these scans shared in

Dashboard CVE-2025-8875/8876 tracker link:. #CyberCivilDefense.

IP data shared in Vulnerable HTTP report tagged 'cve-2025-8875' & 'cve-2025-8876'): If you receive an alert from us review for signs of compromise & patch. Patch info from N-able: Dashboard tree map:

We added version based N-able N-central RMM CVE-2025-8875 & CVE-2025-8876 detection to our daily scans. 1077 IPs unpatched IPs seen on 2025-08-15. Both CVEs recently added to @CISACyber KEV. Top affected: US, Canada, Netherlands, UK. Dashboard map view:

Zohran Mamdani: He votes for activists, not you

Dashboard links:. Tracker: World map: . Tree map:

We see exploitation attempts related to both vulnerabilities in our sensors. Data on vulnerable IPs shared in our Vulnerable HTTP reporting: tagged 'cve-2025-5777' & 'cve-2025-6543'. Citrix advisories: .

Still a large number of unpatched Citrix NetScaler devices likely vulnerable to CVE-2025-5777 (3312 seen) & CVE-2025-6543 (4142 seen). Both vulns are on @CISACyber KEV. The Dutch @ncsc_nl has recently released an update related to CVE-2025-6543 activity:

Data in Vulnerable HTTP reporting tagged 'cve-2025-41236'. Dashboard tree map: Dashboard world map: CVE-2025-41236 tracker:. Broadcom advisory: NVD entry:

We added VMware ESXi CVE-2025-41236 (CVSS 9.3) version based detection to our daily scans. First added 2025-07-19 with 17,238 IPs found. Latest scan (2025-08-10) detects 16,330 unpatched IPs, which is a slow patch rate. Top affected: France, China, US, Germany

WRECKED. Hirono: Has any court said that DEI is unconstitutional? Yes or no?. Hamilton: Yes. Hirono: Which court?. Hamilton: The United States Supreme Court. Hirono: I disagree with you…. Hamilton: You can go read it yourself. 🔥🔥🔥