To put this in perspective, we added 52 entries to CEWL for the third quarter of Q3, and we reach 65 just for the month of June 2021 - that's 3x more attacks in one month. Threat actors are attacking companies like never before. CEWL gives you insight into what threat actors are actively exploiting in the wild or about to exploit. Having this information allows you to be a lot more effective in stopping being compromised. You can use this list to determine what to be more effective in what to patch, what detections, mitigations, security products to buy, and what security features to turn on.
CEWL is the best CVE Actionable Threat Intelligence product on this side of the galaxy.
Over the past year, we have been honing our threat intelligence, automating more analysis, going deeper and wider. We also went from API only to a portal. Yeppers, even though people like to use the API, many people wanted to explore the list, do notifications on the list, create advanced filters, and the like.
In checking how we did, we could easily check news articles with what was exploited in the wild and when we found it. On average, we are some nine days early for targeted attacks. We will be producing some blog entries of different reports on exploits in the wild and when we caught them. A lot of times, when a CVE came out we can tell you whether it is really being exploited in the wild. CEWL allows you to focus on the organization on what is most important, what threat actors are doing. For organizations, that means you have a heads up and reduce the likelihood of being compromised.
Continually finding what threat actors are doing or about to do is one of the hardest problems in cybersecurity, and the good news year, we went from strength to strength.
We first started with an API to pull the CEWL list, and then clients asked if we could:
Big thanks to all the peeps that provided us with guidance to get there.
Figure 1, "CEWL Features"
Why did it take so long?
Good things sometimes take longer than expected, especially when it comes to the quality of the CVE list. Also, we went down a little of a rabbit warren of just adding one more feature before release, 30 features later, oops. Development always takes 4x longer than you think it will take. We are happy with this version of the product, and there is even more cool stuff coming. We said it's time to help 1,000s of companies to have better security outcomes. Less time in Breaches, more time on Beaches. (Which if you saw me, you would say I haven't spent much time on the beach. The idea is there, more time doing things you love. )
START A FREE TRIAL TODAY
Get the world's best CVE threat intelligence and rocket the security maturity level of your organization. To start a trial, send an email to email@example.com with the subject, like "Trial" or let your creative side loose, such as: "CEWL is me to a Tee," "Hook me up with CEWL," "Let me loose on CEWL", "Threat Actors begone."