All Global Observations Footprint

Top 10 Identified Countries

Country Observations Percentage
US 346,593,592 47.32%
DE 67,037,793 9.15%
CN 30,399,043 4.15%
NL 29,326,827 4.00%
FR 28,879,380 3.94%
CA 19,276,609 2.63%
JP 18,798,370 2.57%
GB 17,457,970 2.38%
RU 16,402,061 2.24%
SG 9,792,950 1.34%

All Industry Observations Footprint

Top 10 Identified Industries

*Service provider organizations (typically Technology and Telecommunications) are disproportionally represented in the results given their upstream ownership of end-user infrastructure. See our FAQs.

Industry* Observations Percentage
Technology 753,456,713 89.73%
Telecommunications 39,765,712 4.74%
Finance 16,223,851 1.93%
Business Services 8,385,979 1.00%
Government/Politics 3,641,321 0.43%
Education 3,312,032 0.39%
Engineering 3,137,068 0.37%
Consumer Goods 2,265,411 0.27%
Utilities 2,104,040 0.25%
Manufacturing 1,581,512 0.19%
Pulse logo
  • Direktorat Jenderal Bea dan Cukai attacked by Everest ransomware group
  • Access to internal networks for sale in multiple countries
  • Auction for access to a US manufacturing company's network
  • Access to internal networks for sale in multiple countries
  • OpsShadowStrike claims attack on multiple websites in solidarity with Palestine and Iran
free threat news app

Browse Software by Vendors or their Products

Click a Vendor or Product name below. 

806 Vendors Found
Vendor Observations
Cloudflare 287,505,491
Amazon 105,419,238
F5 101,536,788
Microsoft 99,849,979
Apache 82,688,973
OpenResty 70,631,266
PHP 45,016,119
WordPress 32,331,566
Akamai 19,181,347
Canonical 17,319,273
OpenBSD Project 10,352,329
Varnish Cache Project 9,811,307
Dovecot 9,198,194
LiteSpeed Technologies 7,186,958
Plesk 7,163,030
Alibaba 6,692,745
Debian 6,069,398
Opengroup 5,127,733
Vercel 4,328,483
Oracle 3,665,960
13338 Products Found
Product Vendor Observations
Qa43q8faajxzk Samsung 4
Qfx5100 48t 6q Juniper Networks 4
Niagara Supervisor Tridium 4
Tq75qn1efauxxc Samsung 4
Qn55qn70fafxzc Samsung 4
Ue43u8092fuxxh Samsung 4
Qn55qef1agxzd Samsung 4
Ku85uf8500fxkr Samsung 4
Dhi Nvr4216 4ks2a Firmware Dahua Technology 4
Tq75qn77fbuxxc Samsung 4
Kq75qnf85bfxkr Samsung 4
Tq55qn85fauxxc Samsung 4
Tq55s85fauxxc Samsung 4
Qe65s90fatxzu Samsung 4
Qe65s85faexxh Samsung 4
F607 ZTE 4
Qn55q8faafxzc Samsung 4
Un50u8000fpxpa Samsung 4
Qe50q8faauxxh Samsung 4
Tq75q6faauxxc Samsung 4

Bitsight Data Discovery and Continuous Threat Scanning

The leading provider of Cyber Risk Intelligence solutions, Bitsight introduced the next-generation internet scanning Bitsight Groma in May 2024. This technology continuously scans the entire internet to discover assets, collect asset attribution evidence, and identify an ever-growing set of security observations, such as vulnerabilities and misconfigurations.  Groma’s scanning activities presently encompass:


  • 40 million-plus monitored organizations
  • 250 million-plus host names
  • 4 billion-plus routable IPv4 and IPv6 addresses

Greynoise’s recent study testifies the speed of Bitsight Groma.

Learn more about Bitsight Groma
Bitsight data discovery
Governance charcoal background

How we use Bitsight Groma data 

Empower Security Research

Bitsight TRACE team investigates security incidents and identifies vulnerabilities and threats.

View latest security research 

See Your External Attack Surface

See what you’re up against across the expanding attack surface. Prioritize what matters most. And mitigate where you’re most vulnerable.

External Attack Surface Management

Software Vulnerabilities

Manage vulnerabilities, not the other way around with DVE scores.

The Dynamic Vulnerability Exploit (DVE) score, powered by Bitsight AI, reflects the probability of a vulnerability being exploited by malicious actors over the course of 90 days.

CVE-2025-0282

This is a stack-based buffer overflow in Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways, which allows unauthenticated attackers to achieve remote code execution. PoCs are available for CVE-2025-0282, which has been actively exploited in the wild. Bitsight also detected at least one threat actor attempting to sell a PoC for CVE-2025-0282.

See latest scores

CVE-2024-55591

This vulnerability allows authentication bypass using an alternate path or channel, which a remote attacker could leverage to gain super-admin privileges via crafted requests to the Node.js websocket module. It affects FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12.

See latest scores

CVE-2024-9474

This is a privilege escalation vulnerability in Palo Alto Networks PAN-OS software that has been actively exploited in the wild.

See latest scores

Bitsight ASA Report Image

Your attack surface is expanding—know exactly how it looks

Reducing exposure starts with knowing exactly how your external attack surface stands—from your overall standing to each digital and cloud asset around the world. Bitsight's custom report gives you the insights you need to see your entire external attack surface.

Get a free attack surface report