| Country | Blocked | Share |
|---|---|---|
| United States (US) | 97 | 76.4% |
| United Kingdom (GB) | 8 | 6.3% |
| Canada (CA) | 8 | 6.3% |
| Türkiye (TR) | 8 | 6.3% |
| The Netherlands (NL) | 6 | 4.7% |
Based on emails that reached the content filter. MTA-level blocks (RBL, GeoIP) are not included.
| Domain | Blocked | Avg Score | Volume |
|---|---|---|---|
| nobleuae.com | 7 | 56.0 | |
| goefa.com | 5 | 51.3 | |
| outlook.com | 5 | 55.5 | |
| messagethenow.com | 4 | 27.7 | |
| gmail.com | 4 | 61.1 | |
| gid.com.hk | 3 | 82.7 | |
| email.guitarcenter.com | 3 | 0.1 | |
| axiomaconsultores.mx | 2 | 99.7 |
| Score | Sender | Subject |
|---|---|---|
| 186.581 | Webmail Account <service@webmail.com> | [[redacted]: New Sender] [redacted] Service |
| 180.491 | Webmail Account <service@webmail.com> | [[redacted]: New Sender] [redacted] Service |
| 171.75 | Federal Tax Authority <ap@tax.gov.ae> | [[redacted]: New Sender] URGENT: Action Required - Pe |
| 163.69 | American Express <dan@[redacted] | Unusual Spending Activities Detected. |
| 160.814 | American Express <dan@[redacted] | Unusual Spending Activities Detected. |
| CVE | Vendor / Product | Ransomware |
|---|---|---|
| CVE-2026-56291 | Balbooa Forms Balbooa Forms contains an unrestricted upload of file with dangerous type vulnerability that allows an unauthenticated arbitrary file upload which could allow uploading of executable files leading to full RCE. | Unknown |
| CVE-2026-48939 | iCagenda iCagenda iCagenda contains an unrestricted upload of file with dangerous type vulnerability that allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution. | Unknown |
Top threat types:
unknown: 5020 email-related indicators of compromise in the last 24 hours.
| Malware Family | IOCs | Severity |
|---|---|---|
| Stealc | 8 | High |
| Remvio | 5 | High |
| Vidar | 5 | High |
| AsyncRAT | 2 | Medium |