⚠️

Cybersecurity data partially outdated

The CVE (NVD) and CISA KEV pipelines have data from approximately 60 days ago. CVE counts below reflect the accumulated historical database, not recent incidents. Geopolitical conflict data (ACLED) is updated daily.

Security Intelligence

Offensive pressure vs defensive capacity. CVEs, KEVs, advisories and security hiring.

2026-05-29 15:47 UTC (just now)

2,701

monitored CVEs (Global)

262

critical (Global)

CISA KEV (Global)

🌐

Global Threat Landscape

Global data — no country dimension

🛡

CVEs (Global)

2,701

all sources · NVD + CISA + GitHub

🚨

CISA KEV (Global)

actively exploited

⚠confirmed exploitation

⚠

CVE/Job Ratio (Global)

1.2:1

pressure per analyst

🔒

Security Jobs (90d) · Global

1,213

by title (cyber/security)

CVE Trend · Global (90 days)

Last 90 Days

769

Previous 90 Days

684

Change

+12.4%

CVE Severity Breakdown · Global

10%

36%

43%

CRITICAL262(9.7%)

HIGH972(36.0%)

MEDIUM1,169(43.3%)

LOW195(7.2%)

UNKNOWN103(3.8%)

Central Thesis

2,701 global security events (1,616 GitHub + 1,031 NVD + 54 CISA KEV). CVE data is global (NVD/CISA/GitHub have no country dimension). Offensive pressure grows faster than defensive capacity.

Events by Source · Global

GitHub Security Advisories

1,616

Vulnerabilities in software packages (59.8%)

NVD (CVEs)

1,031

National Vulnerability Database (38.2%)

CISA KEVCRITICAL

Known Exploited Vulnerabilities (2.0%)

Top Affected Vendors/Projects · Global

Names as recorded in NVD, CISA KEV, and GitHub Advisories; may include small projects or individual authors.

1microsoft29

2sun28

3phpgurukul25

4ibm22

5linux20

6dlink18

7google18

8campcodes16

9fabian16

10fortinet16

Counter-signals

Security positions may be under DevOps/DevSecOps or Engineering.
Many organizations outsource security to MSSPs.
CISA KEV is US-centric. Different geopolitical contexts may not be represented.

Recommended Action

CISOs should IMMEDIATELY verify if the 54 KEVs affect the organization's tech stack. If internal CVE/analyst ratio > 50:1, consider tactical outsourcing or triage automation.

Methodological Notes

CVE data is GLOBAL — NVD, CISA KEV, and GitHub Advisories have no country dimension.
Security jobs are global (last 90 days).
CVE trend calculated comparing last 90 days vs previous 90 days (global).