Skip to main content

Advisory

The Advisory module delivers early warning threat intelligence — curated advisories about emerging threats, active campaigns, critical vulnerabilities, and threat actor activity that may be relevant to your organization.

Accessing Advisory

From the left navigation menu in the console, click Advisory.

What Advisories Cover

CyberXTron publishes advisories across several categories:

CategoryDescription
Threat Actor ActivityNewly observed or escalating activity from tracked threat actors
Active CampaignsCampaigns actively targeting specific industries or geographies
Critical CVEsHigh-impact vulnerabilities with active exploitation or ransomware use
Emerging MalwareNew malware families or significant variants detected in the wild
Dark Web IntelligenceSignificant dark web activity relevant to your sector (data sales, IAB access listings)
Brand Threat WavesSurges in phishing or brand impersonation activity

Advisory Details

Each advisory includes:

  • Title and severity — What the threat is and how urgent it is
  • Summary — Plain-language description of the threat and why it matters
  • Affected industries and geographies — Who is being targeted
  • Indicators of Compromise — IOCs associated with the threat, enrichable via IOC Lookup
  • MITRE ATT&CK mapping — Techniques and sub-techniques in use
  • Recommendations — Prioritized defensive actions your team should take

Filtering Advisories

Filter the advisory feed by:

  • Severity: Critical, High, Medium, Informational
  • Category: Threat actor, CVE, campaign, malware, dark web, brand
  • Date range
  • Relevance to your industry or geography

Notifications

Configure advisory notifications under Settings → Notifications. You can receive:

  • Email alerts for new Critical and High advisories
  • Webhook POST to your SIEM or SOAR for automated ingestion
  • Slack notifications to your security channel

Relationship to Other Modules

  • Advisories reference active IOCs tracked by ThreatBolt
  • Critical CVE advisories are linked to corresponding findings in CVE Intelligence
  • Threat actor advisories link to actor profiles in the Threat Library
  • Campaign tracking is visualized on the Threat Map