New in Event Feeds: Vendor CVE Spike & Tag Spike
ATT&CK techniques detected
T1588.006Vulnerabilities
84%
"alerting only when exploitation activity across a vendor meaningfully increases. how it helps : this feed is designed to help you focus on when attacker interest spikes, rather than managing lists of specific cves. as vulnerabilities and tags associated with a vendor evolve, the …"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1588.006Vulnerabilities
47%
"targeting enterprise vpn infrastructure. specifically, we saw a significant elevation in targeting of both fortinet ssl vpns and palo alto globalprotect portals. this activity validates findings from our early warning signals research : vendor - level spikes — whether from creden…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
GreyNoise introduces Vendor CVE Spike and Tag Spike. Learn how to detect coordinated vendor targeting and botnet surges before a CVE is assigned.