Sample Dashboard

This is a demo for a fictional organization (“Acme Corp”) with a sample stack and illustrative team activity. The threats below are real and current — everything about “your organization” on this page is not.

Request access →

Acme Corp's Dashboard (Sample)

Threat Posture

Same ranked feed every account gets, re-sorted against Acme Corp's stack (Microsoft, Cisco, Palo Alto Networks, Fortinet) — no 3-vendor cap, shared with a whole team, exactly like a real paid account.

Review active mutes 1 category currently hidden below.

Based on the 25threats currently ranked below, not live infrastructure telemetry — this reflects our editorial coverage and your team's response to it, not a scan of your environment.

Your organization's stack

Threats naming these vendors float to the top below. Edit in Stack & Integrations.

MicrosoftCiscoPalo Alto NetworksFortinet
#1
75.1Matches your stackCLOSE THIS GAPCISA KEV · due 2026-05-15Ransomware17 days ago

CVE-2026-31431 FortiOS Impact: CopyFail Patch and Detection Guide

CVE-2026-31431 CopyFail Linux kernel LPE affects FortiOS-based FortiGate appliances. A 732-byte public exploit grants root. Check your FortiOS version and patch.

CVE-2026-31431EPSS 96.3% (top 0%)High
Score breakdown
CISA KEV
25.0/25
EPSS
19.3/20
CVSS
7.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
1.0/10
Patch deadline near
0.0/10
#2
73.5Matches your stackCLOSE THIS GAPCISA KEV · due 2026-07-28Ransomware2 days ago

Microsoft Patch Tuesday July 2026: 2 Zero-Days Exploited in Attacks, 570 Flaws Fixed

Microsoft Patch Tuesday July 2026 patches 570 flaws and 2 actively exploited zero-days. CISA deadline expires today. Patch ADFS and SharePoint before the weekend.

CVE-2026-56155EPSS 0.4% (top 70%)Important
Score breakdown
CISA KEV
25.0/25
EPSS
0.1/20
CVSS
7.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
8.6/10
Patch deadline near
10.0/10
#3
60.0Matches your stackACTIVE CAMPAIGNCISA KEV · due 2026-05-06Ransomware18 days ago

BlueHammer CVE-2026-33825: Ransomware Gangs Exploit Windows Defender in Live Attacks

BlueHammer CVE-2026-33825 ransomware campaigns confirmed by CISA across all Windows versions. Patch Windows Defender before end of business.

CVE-2026-33825EPSS 6.7% (top 7%)High
Score breakdown
CISA KEV
25.0/25
EPSS
1.3/20
CVSS
7.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
10.0/10
Recency
0.9/10
Patch deadline near
0.0/10
#4
59.9Matches your stackCLOSE THIS GAPCISA KEV · due 2026-06-23Ransomware44 days ago

Cisco SD-WAN Zero-Day CVE-2026-20245: No Patch, Root Access Active

Cisco SD-WAN zero-day CVE-2026-20245 confirmed actively exploited with no patch. Mandiant found root access attacks on all deployment types. Mitigations inside.

CVE-2026-20245EPSS 25.3% (top 2%)High
Score breakdown
CISA KEV
25.0/25
EPSS
5.1/20
CVSS
7.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
0.0/10
Patch deadline near
0.0/10
#5
58.3Matches your stackPATCH BEFORE EODCISA KEV · due 2026-05-29Ransomware38 days ago

June 2026 Patch Tuesday: Exchange OWA Zero-Day Exploited 28 Days Before the Patch

June 2026 Patch Tuesday fixes 200 CVEs. CVE-2026-42897 Exchange OWA zero-day was actively exploited for 28 days; RoguePlanet CVSS 9.6 drops same day.

CVE-2026-42897EPSS 5.6% (top 8%)High
Score breakdown
CISA KEV
25.0/25
EPSS
1.1/20
CVSS
8.1/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
9.0/10
Recency
0.1/10
Patch deadline near
0.0/10
#6
57.6Matches your stackCLOSE THIS GAPCISA KEV · due 2026-07-04Ransomware16 days ago

SharePoint RCE CVE-2026-45659: Patch Before the July 4 Deadline

SharePoint RCE CVE-2026-45659 is actively exploited by Storm-2603. Verify your SharePoint Server builds before CISA's July 4 patch deadline.

CVE-2026-45659EPSS 3.2% (top 13%)High
Score breakdown
CISA KEV
25.0/25
EPSS
0.6/20
CVSS
8.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
1.2/10
Patch deadline near
0.0/10
#7
31.6Matches your stackPATCH BEFORE EOD33 days ago

3 Critical FortiSandbox Flaws Actively Exploited: Patch to 5.0.6 Now

FortiSandbox unauthenticated RCE CVE-2026-39813 exploited in the wild. Three CVSS 9.1 flaws, no auth needed. Upgrade to 5.0.6 or 4.4.9 to close the gap.

CVE-2026-39813EPSS 16.7% (top 3%)Critical
Score breakdown
CISA KEV
0.0/25
EPSS
3.3/20
CVSS
9.1/10
Exploited in wild
10.0/10
Ransomware use
0.0/5
Editorial impact
9.0/10
Recency
0.1/10
Patch deadline near
0.0/10
#8
29.4Matches your stackMONDAY INTEL DROP6 days ago

Monday Intel Drop: Russian Router Attacks, RoguePlanet Zero-Day, 5 Threats to Fix Today

Russian FSB targets 6 critical sectors in this Monday cyber threat brief July 2026: 5 active exploits demand immediate action today.

CVE-2026-50656EPSS 3.4% (top 13%)High
Score breakdown
CISA KEV
0.0/25
EPSS
0.7/20
CVSS
7.8/10
Exploited in wild
10.0/10
Ransomware use
0.0/5
Editorial impact
6.0/10
Recency
4.9/10
Patch deadline near
0.0/10
#9
28.8Matches your stackPATCH BEFORE EOD5 days ago

CVE-2025-47981: Wormable Windows SPNEGO Flaw Tops Microsoft's July 2026 Patch Tuesday

CVE-2025-47981 (CVSS 9.8) gives attackers wormable unauthenticated RCE via SMB, RDP, and SMTP on all Windows 10 and Server systems — patch July 2026 Patch Tuesday before EOD.

CVE-2025-47981EPSS 21.9% (top 3%)Critical
Score breakdown
CISA KEV
0.0/25
EPSS
4.4/20
CVSS
9.8/10
Exploited in wild
0.0/10
Ransomware use
0.0/5
Editorial impact
9.0/10
Recency
5.6/10
Patch deadline near
0.0/10
#10
12.4Matches your stackACTIVE CAMPAIGN11 days ago

EtherRAT Targets Finance and Healthcare via Fake Teams IT Support Calls

EtherRAT uses fake Microsoft Teams IT support calls to plant a Node.js RAT with Ethereum blockchain C2 in finance and healthcare organizations.

Score breakdown
CISA KEV
0.0/25
EPSS
0.0/20
CVSS
0.0/10
Exploited in wild
0.0/10
Ransomware use
0.0/5
Editorial impact
10.0/10
Recency
2.4/10
Patch deadline near
0.0/10
#11
76.7PATCH BEFORE EODCISA KEV · due 2026-06-21Ransomware26 days ago

Splunk CVE-2026-20253: 1,400 Exposed Instances Under Active Unauthenticated RCE Attack

Splunk CVE-2026-20253 unauthenticated RCE has 1,400+ exposed instances and a missed CISA deadline. Upgrade to 10.2.4 today.

CVE-2026-20253EPSS 88.2% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
17.6/20
CVSS
9.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
9.0/10
Recency
0.3/10
Patch deadline near
0.0/10
#12
75.8KNOW YOUR ENEMYCISA KEV · due 2026-06-15Ransomware21 days ago

ShinyHunters Breaches 100 Organizations Using Oracle PeopleSoft Zero-Day

ShinyHunters exploited a CVSS 9.8 Oracle PeopleSoft zero-day to compromise 100+ organizations before Oracle knew the flaw existed.

CVE-2026-35273EPSS 92.3% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
18.5/20
CVSS
9.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
0.6/10
Patch deadline near
0.0/10
#13
75.5MONDAY INTEL DROPCISA KEV · due 2026-05-03Ransomware41 days ago

44,000 cPanel Servers Compromised: 5 Critical Vulnerabilities to Patch This Monday

cPanel CVE-2026-41940 has compromised 44,000 servers worldwide. Four more critical vulnerabilities demand your Monday morning action.

CVE-2026-41940EPSS 98.1% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
19.6/20
CVSS
9.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
6.0/10
Recency
0.0/10
Patch deadline near
0.0/10
#14
75.3CLOSE THIS GAPCISA KEV · due 2026-06-15Ransomware37 days ago

Oracle PeopleSoft CVE-2026-35273: 100 Organizations Breached, Close PSEMHUB Now

Oracle PeopleSoft CVE-2026-35273 zero-day: ShinyHunters breaches 100+ orgs, CVSS 9.8. Block PSEMHUB and apply Oracle emergency advisory before the weekend.

CVE-2026-35273EPSS 92.3% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
18.5/20
CVSS
9.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
0.1/10
Patch deadline near
0.0/10
#15
73.2CLOSE THIS GAPCISA KEV · due 2026-06-19Ransomware30 days ago

Joomla JCE CVE-2026-48907: 2.5 Million Sites Open to Unauthenticated Code Execution

Joomla JCE CVE-2026-48907 is a CVSS 10.0 unauthenticated RCE hitting 2.5M sites. Patch to JCE 2.9.99.5 before the weekend.

CVE-2026-48907EPSS 80.4% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
16.1/20
CVSS
10.0/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
0.2/10
Patch deadline near
0.0/10
#16
72.9PRACTITIONER GUIDECISA KEV · due 2023-09-14Ransomware24 days ago

CVE-2023-32315 Openfire: Am I Vulnerable? Version Check, Log IOCs, and Shodan

CVE-2023-32315 is an authentication bypass in Openfire XMPP that allows unauthenticated path traversal to the admin console. Three thousand-plus servers were compromised in 2023 and active scanning continues in 2026. Here is how to check your exposure in under 10 minutes.

CVE-2023-32315EPSS 100.0% (top 0%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
20.0/20
CVSS
7.5/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
5.0/10
Recency
0.4/10
Patch deadline near
0.0/10
#17
72.4PATCH BEFORE EODCISA KEV · due 2026-06-11Ransomware40 days ago

Check Point VPN Authentication Bypass CVE-2026-50751 Exploited by Qilin Ransomware

Check Point VPN authentication bypass CVE-2026-50751 scores CVSS 9.3. Qilin ransomware is actively exploiting it. Patch before EOD.

CVE-2026-50751EPSS 70.1% (top 1%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
14.0/20
CVSS
9.3/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
9.0/10
Recency
0.0/10
Patch deadline near
0.0/10
#18
66.7ACTIVE CAMPAIGNCISA KEV · due 2026-07-17Ransomware4 days ago

SonicWall SMA1000 Zero-Days CVE-2026-15409 Actively Exploited: Patch Before July 17

SonicWall SMA1000 zero-day CVE-2026-15409 (CVSS 10.0) is actively exploited, chained with CVE-2026-15410 for unauthenticated RCE. CISA deadline July 17 — patch or disconnect now.

CVE-2026-15409EPSS 1.3% (top 34%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
0.3/20
CVSS
10.0/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
10.0/10
Recency
6.5/10
Patch deadline near
0.0/10
#19
65.9CLOSE THIS GAPCISA KEV · due 2026-07-10Ransomware9 days ago

Adobe ColdFusion CVE-2026-48282: 800 Exposed Servers Under Active Attack

Adobe ColdFusion CVE-2026-48282 (CVSS 10.0) enables unauthenticated RCE on 800+ exposed servers. CISA deadline is today. Patch steps and IOCs inside.

CVE-2026-48282EPSS 28.6% (top 2%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
5.7/20
CVSS
10.0/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
3.2/10
Patch deadline near
0.0/10
#20
58.9PATCH BEFORE EODCISA KEV · due 2026-06-23Ransomware19 days ago

Chrome V8 Zero-Day CVE-2026-11645: 5th Actively Exploited Chrome Bug of 2026 Hits 3.5B Users

Chrome V8 zero-day CVE-2026-11645 confirmed active exploitation — CVSS 8.8, CISA KEV listed, 3.5B Chrome users exposed. Patch to 149.0.7827.103 now.

CVE-2026-11645EPSS 1.7% (top 26%)High
Score breakdown
CISA KEV
25.0/25
EPSS
0.3/20
CVSS
8.8/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
9.0/10
Recency
0.8/10
Patch deadline near
0.0/10
#21
57.9CLOSE THIS GAPCISA KEV · due 2026-06-26Ransomware23 days ago

Ubiquiti UniFi OS: Three CVSS 10.0 Flaws Enable Unauthenticated Root Access, Patch Now

UniFi OS unauthenticated RCE chain (CVE-2026-34908) gives attackers root on 100,000 exposed devices. CISA patch deadline is today, June 26.

CVE-2026-34908EPSS 2.5% (top 17%)Critical
Score breakdown
CISA KEV
25.0/25
EPSS
0.5/20
CVSS
10.0/10
Exploited in wild
10.0/10
Ransomware use
5.0/5
Editorial impact
7.0/10
Recency
0.4/10
Patch deadline near
0.0/10
#22
30.0PATCH BEFORE EOD12 days ago

CVE-2026-8451: Citrix NetScaler SAML Flaw Exploited in 24 Hours

CVE-2026-8451 hit Citrix NetScaler ADC within 24 hours of disclosure. 71 IPs logged 424 exploitation signals targeting SAML session tokens.

CVE-2026-8451EPSS 0.5% (top 60%)High
Score breakdown
CISA KEV
0.0/25
EPSS
0.1/20
CVSS
8.8/10
Exploited in wild
10.0/10
Ransomware use
0.0/5
Editorial impact
9.0/10
Recency
2.1/10
Patch deadline near
0.0/10
#23
18.7CLOSE THIS GAP14 days ago

CVE-2026-4747 FreeBSD NFS RCE: 17-Year-Old Bug Patch Guide

CVE-2026-4747 is a 17-year-old memory corruption flaw in the FreeBSD NFS client that Claude Mythos discovered through Project Glasswing. Unauthenticated attackers with network access can achieve remote code execution as root on any affected FreeBSD system.

CVE-2026-4747EPSS 1.9% (top 22%)Critical
Score breakdown
CISA KEV
0.0/25
EPSS
0.4/20
CVSS
9.8/10
Exploited in wild
0.0/10
Ransomware use
0.0/5
Editorial impact
7.0/10
Recency
1.6/10
Patch deadline near
0.0/10
#24
18.0AI WEAPONIZED1 day ago

AI-Generated 'Vibe-Coded' Malware Caught Mapping Active Directory in Live Attack

A threat actor vibe-coded a PowerShell AD recon script using an LLM, mapped an entire domain in 30 minutes, and exfiltrated the data with zero antivirus detections.

Score breakdown
CISA KEV
0.0/25
EPSS
0.0/20
CVSS
0.0/10
Exploited in wild
0.0/10
Ransomware use
0.0/5
Editorial impact
8.0/10
Recency
10.0/10
Patch deadline near
0.0/10
#25
17.7CLOSE THIS GAP14 days ago

CVE-2026-5194 wolfSSL: Certificate Forgery Flaw and Patch Guide

CVE-2026-5194 is a CVSS 9.1 wolfSSL vulnerability that allows certificate forgery against IoT, automotive, and embedded systems. A patch is available; teams managing wolfSSL-dependent device fleets need to act now.

CVE-2026-5194EPSS 0.5% (top 62%)Critical
Score breakdown
CISA KEV
0.0/25
EPSS
0.1/20
CVSS
9.1/10
Exploited in wild
0.0/10
Ransomware use
0.0/5
Editorial impact
7.0/10
Recency
1.6/10
Patch deadline near
0.0/10

Threat data: same query and scoring as every other Decryption Digest dashboard (EPSS, CISA KEV, CVSS, confirmed exploitation), refreshed daily. Acme Corp, its stack, and its team's assignment/mute activity are fictional, for illustration only. Request access to set this up for your own organization.