Conditions
Internet threat level
- GREEN
- YELLOW
- ORANGE
- RED
0 days at this level
SANS Internet Storm Center · updated hourly · read just now · live
—
of global email is malicious
Cloudflare Radar · unavailable
—
malicious IPs tracked
IPsum · unavailable
For leadership
What this costs
—
of malicious email impersonates a trusted brand or contact
Cloudflare Radar · unavailable
$2.77B
reported business email compromise losses in 2024
FBI IC3 2024 Internet Crime Report · as of 2025-04
—
ransomware victim claims posted this week
RansomLook · unavailable
Ransomware figures count unverified breach claims posted to leak sites; individual victim names are never published — a claim is not a confirmation.
For IT
Patch these first
The exploited-vulnerabilities feed is temporarily unavailable.
CISA KEV Catalog · unavailable
Email authentication adoption
The email-authentication feed is temporarily unavailable.
Cloudflare Radar · unavailable
For everyone
What to watch for
The consumer-alert feed is temporarily unavailable.
FTC Consumer Alerts · unavailable
MFA alone does not stop session-token theft. A real login page never asks you to re-approve a sign-in you did not start.
La autenticación multifactor por sí sola no detiene el robo de tokens de sesión. Una página de inicio de sesión legítima nunca le pide volver a aprobar un acceso que usted no inició.
Panotech Sensor Network
What our own sensors saw
566
attacks observed
113
unique sources
Top attacking networks
| Network | Attacks | Sources | Per IP |
|---|---|---|---|
| 1&1 Versatel GmbH | 141 | 3 | 47 ▲ |
| 500 Oracle Parkway | 103 | 2 | 51.5 ▲ |
| Private Customer | 57 | 7 | 8.1 |
| MPLS ADSL Broadband | 55 | 1 | 55 ▲ |
| DigitalOcean, LLC | 49 | 7 | 7 |
| Microsoft Corporation | 36 | 16 | 2.3 |
| Rica Web Services | 11 | 1 | 11 ▲ |
| Contabo GmbH | 9 | 4 | 2.3 |
| TECHOFF SRV LIMITED | 8 | 1 | 8 |
| Microsoft Limited | 8 | 5 | 1.6 |
▲ High attacks-per-source indicates dedicated attack infrastructure rather than compromised cloud hosts.
Attack categories
- WordPress_Login_Probe 387
- Web_App_Probe 64
- Laravel_Env_Probe 33
- Git_Config_Probe 27
- PHP_Eval_Probe 11
- SpringBoot_Actuator 11
- GraphQL_Probe 8
- Confluence_Exploit 7
- Exchange_Exploit 7
- Other 11
Countries of origin
- DE 170
- SG 111
- US 74
- ZW 55
- ZA 48
- NL 24
- CA 20
- FR 16
- BR 15
- GB 7
- CH 6
- Other 20
Attacks by hour of day (UTC)
Benign crawlers are excluded from every figure above. Attacker-reported tooling is not shown; it is forgeable. Counts under 5 are withheld — precision aids sensor fingerprinting.
Panotech Sensor Network · 7-day window · read 12m ago · live