Threat Intelligence
Threat actor analysis, emerging attack patterns, malware trends, and security intelligence sharing statistics.
Related Topics
Showing 1-20 of 83 results
27% of security professionals would prioritise automating the conversion of threat intelligence into actionable priorities.
21% of security professionals say the volume of threat intelligence information often creates more noise than clarity.
19% of security professionals completely trust threat intelligence to tell them what to fix first.
52% of security professionals say threat intelligence helps inform decisions but still requires significant human judgement.
GreyNoise sensors observe eight distinct surges targeting Cisco before the advisory for CVE-2026-20127, with the earliest surge occurring 39 days before disclosure.
When session volume and IP count spike simultaneously, lead time extends to 21 days.
78% of cybersecurity professionals confirm that AI has already improved threat intelligence operations to some degree.
Concentrated hosting surges average 7.5 days of lead time before disclosure.
Distributed surges average 21.3 days of lead time before disclosure.
Real-time sharing of threat intelligence across SecOps, incident response, and vulnerability management nearly doubled from 17% in 2025 to 32% in 2026.
79% of cybersecurity professionals say threat intelligence sharing is critical or very important for detection and response workflows.
78% of vendor-targeted surges begin within 21 days before the associated vulnerability disclosure.
The median lead time of vendor-targeted surges before a matched vulnerability disclosure is 11 days.
68 of 104 detected surge events preceded a vendor-matched CVE, spanning 33 vulnerabilities across 16 vendor families.
Fortinet CVE-2026-24858 provides one day of warning before disclosure.
SonicWall CVE-2026-0400 experienced six surges with lead times compressing from 37 days to 3 days and peak session volume reaching 69 times the median.
49% of vendor-targeted surges begin within 10 days before the associated vulnerability disclosure.
43% of security teams use AI for threat intelligence correlation.
New domains make up over 65% of unique threat domains.
Teams using attack intelligence to track emerging AI vulnerabilities increased by 10%.