Cyber Risk Intelligence
Nation-state APT campaigns, ransomware groups, and critical infrastructure threats
How teams use this
Security teams use APT campaign tracking to map active threat actor TTPs against their network exposure profile, prioritise patching and segmentation, and generate board-ready cyber risk summaries with sector-specific escalation probabilities.
Cyber Threat Score
68
/ 100Elevated — 5 active campaigns
Active APT Campaigns
5
groups2 targeting financial sector
Critical Vulnerabilities
14
CVEsUnpatched in monitored systems
Acme Corp Exposure
Medium
APAC financial ops at risk
Acme Corp — Cyber Exposure Assessment
APT41 campaign targeting SWIFT messaging infrastructure creates elevated risk for Acme Corp APAC financial operations. 3 monitored IP ranges overlap with published IOCs. Cyber incident increases exposure for APAC financial operations — immediate network segmentation review recommended.
Active APT Campaigns
Nation-state and advanced persistent threat groups currently active
| Threat Group | Origin | Primary Target | Severity | Status | Confidence | Acme Relevance |
|---|---|---|---|---|---|---|
| APT41 (Winnti) | China | Financial Infrastructure / SWIFT | Critical | Active | 82% | APAC financial operations at elevated risk |
| Sandworm | Russia | Energy / Industrial Control Systems | High | Active | 78% | Energy procurement systems — monitor for anomalies |
| Lazarus Group | North Korea | Cryptocurrency / Financial Theft | High | Active | 74% | Finance team exposure — phishing risk elevated |
| Cozy Bear (APT29) | Russia | Government / Defence / Tech | Medium | Monitoring | 69% | Low direct exposure — monitor for sector spillover |
Cyber Risk Score Methodology
Cyber threat score (68/100) is an AI-weighted composite combining: active APT campaign severity (40%), unpatched critical CVE exposure (25%), sector-specific targeting frequency (20%), and company network exposure overlap (15%). Score adjusts dynamically based on new IOC publications, CISA advisories, and monitored asset changes.