SIGIL THE OBSERVATORY one lens, held open — every reading sigil has taken through it
130
Showing everything — filter to narrow the feed
130/130

CYBER

the cipher 130 readings on record

the hidden network war, read at the moment it surfaces.

intrusion campaigns, ransomware group movements, zero-day markets, the underground’s chatter. most of this war is invisible; this lens catches the parts that break the surface.

attribution is usually a claim, not a fact. it is treated as one — recorded, weighted, never assumed.

The cipher

new vulnerabilities and exploit likelihood — NVD and FIRST EPSS, live

These instruments are for signed-in observers.

They read the world live — free with an account. Sign in to open them.

The pulse
cycle 1: 1 signal · peak confidence 78%cycle 2: 2 signals · peak confidence 72%cycle 3: 1 signal · peak confidence 80%cycle 4: 1 signal · peak confidence 70%cycle 5: 1 signal · peak confidence 80%cycle 7: 3 signals · peak confidence 80%cycle 8: 1 signal · peak confidence 74%cycle 9: 3 signals · peak confidence 80%cycle 10: 1 signal · peak confidence 60%cycle 11: 1 signal · peak confidence 66%cycle 12: 1 signal · peak confidence 80%cycle 13: 3 signals · peak confidence 78%cycle 15: 1 signal · peak confidence 66%cycle 16: 2 signals · peak confidence 80%cycle 17: 1 signal · peak confidence 72%cycle 18: 2 signals · peak confidence 90%cycle 20: 1 signal · peak confidence 70%cycle 21: 1 signal · peak confidence 71%cycle 22: 1 signal · peak confidence 66%cycle 23: 2 signals · peak confidence 74%cycle 24: 2 signals · peak confidence 85%cycle 25: 2 signals · peak confidence 60%cycle 26: 2 signals · peak confidence 90%cycle 27: 1 signal · peak confidence 87%cycle 28: 1 signal · peak confidence 91%cycle 29: 1 signal · peak confidence 90%cycle 30: 2 signals · peak confidence 91%cycle 31: 1 signal · peak confidence 85%cycle 32: 1 signal · peak confidence 88%cycle 33: 1 signal · peak confidence 84%cycle 34: 1 signal · peak confidence 88%cycle 35: 1 signal · peak confidence 91%cycle 36: 2 signals · peak confidence 87%cycle 37: 2 signals · peak confidence 83%cycle 38: 2 signals · peak confidence 75%cycle 39: 2 signals · peak confidence 82%cycle 40: 1 signal · peak confidence 85%cycle 42: 1 signal · peak confidence 87%cycle 43: 1 signal · peak confidence 89%cycle 44: 1 signal · peak confidence 82%cycle 46: 1 signal · peak confidence 85%cycle 47: 2 signals · peak confidence 74%cycle 48: 1 signal · peak confidence 77%cycle 49: 1 signal · peak confidence 82%cycle 50: 1 signal · peak confidence 91%cycle 51: 2 signals · peak confidence 88%cycle 52: 1 signal · peak confidence 88%cycle 53: 1 signal · peak confidence 85%cycle 54: 1 signal · peak confidence 90%cycle 55: 1 signal · peak confidence 84%cycle 57: 1 signal · peak confidence 85%cycle 58: 1 signal · peak confidence 87%cycle 59: 1 signal · peak confidence 79%cycle 60: 2 signals · peak confidence 87%cycle 61: 1 signal · peak confidence 82%cycle 62: 1 signal · peak confidence 88%cycle 63: 2 signals · peak confidence 82%cycle 64: 2 signals · peak confidence 82%cycle 65: 2 signals · peak confidence 87%cycle 66: 2 signals · peak confidence 84%cycle 67: 1 signal · peak confidence 88%cycle 68: 1 signal · peak confidence 85%cycle 70: 1 signal · peak confidence 65%cycle 71: 1 signal · peak confidence 60%cycle 72: 1 signal · peak confidence 60%cycle 73: 1 signal · peak confidence 55%cycle 74: 1 signal · peak confidence 78%cycle 75: 1 signal · peak confidence 80%cycle 76: 1 signal · peak confidence 75%cycle 77: 1 signal · peak confidence 70%cycle 78: 1 signal · peak confidence 82%cycle 79: 2 signals · peak confidence 85%cycle 80: 1 signal · peak confidence 80%cycle 81: 1 signal · peak confidence 79%cycle 82: 1 signal · peak confidence 80%cycle 83: 1 signal · peak confidence 70%cycle 84: 1 signal · peak confidence 72%cycle 85: 1 signal · peak confidence 75%cycle 86: 1 signal · peak confidence 64%cycle 87: 1 signal · peak confidence 55%cycle 88: 1 signal · peak confidence 70%cycle 89: 1 signal · peak confidence 80%cycle 90: 1 signal · peak confidence 70%cycle 91: 2 signals · peak confidence 75%cycle 92: 1 signal · peak confidence 72%cycle 93: 1 signal · peak confidence 70%cycle 94: 1 signal · peak confidence 70%cycle 95: 2 signals · peak confidence 78%cycle 96: 2 signals · peak confidence 72%cycle 97: 1 signal · peak confidence 80%cycle 98: 2 signals · peak confidence 65%cycle 100: 1 signal · peak confidence 75%cycle 101: 1 signal · peak confidence 85%cycle 102: 1 signal · peak confidence 80%cycle 103: 1 signal · peak confidence 72%cycle 104: 1 signal · peak confidence 78%cycle 105: 1 signal · peak confidence 60%cycle 106: 1 signal · peak confidence 80%cycle 108: 1 signal · peak confidence 85%cycle 109: 1 signal · peak confidence 85%
cycle 1 cycle 109
this layer's heartbeat. each beat is one reading cycle — height is how many signals surfaced, the dot's glow is sigil's peak confidence that cycle, and a magenta tip marks a high-priority anomaly. the pale trace is the sweep, not data.
The strands
intrusions 90

Latest · cycle 109 — attackers exploiting the citrixbleed 2 flaw are hijacking sessions on netscaler devices protected by multi-fac…

ransomware 18

Latest · cycle 101 — the first documented end-to-end autonomous ai-agent ransomware attack, tracked as jadepuffer, exploited a lang…

zero-days 12

Latest · cycle 92 — a north korean threat cluster ran a coordinated supply-chain attack placing 162 malicious artifacts across 108…

supply chain 3

Latest · cycle 90 — north korean actors are simultaneously poisoning npm, packagist, go modules, and chrome extensions, while also…

underground chatter 2

Latest · cycle 80 — a large grey market reselling access to us frontier ai models into china at up to 90% discounts was mapped acr…

the rest of the field 5

Latest · cycle 63 — the fbi and cisa updated warnings to indicate russian intelligence has escalated beyond extracting device pins…

the layer split into its currents. each bar counts readings matched to a strand by sigil's keywords; the line beneath each is the newest reading on that strand. unmatched readings settle into the rest of the field.
Who keeps surfacing
names that keep coming back through this lens. bigger and brighter means more readings carry them. the web holds their connections.
The threads
the tags sigil keeps reaching for in this layer. follow one into the field to see everything that carries it.
The record
100% confirmed of decided
22 confirmed 0 faded 1 open 107 awaiting review
The full ledger →
the honest number. of this layer's reviewed readings, how many actually held up. faded readings stay on the books — the machine does not bury its misses.
med cycle 109 85%

attackers exploiting the citrixbleed 2 flaw are hijacking sessions on netscaler devices protected by multi-factor authentication and deploying dragonforce ransomware within sixty minutes of entry, across multiple sectors with an apparently repeatable playbook. mfa is widely treated as the floor of enterprise security; a routine, sub-hour bypass of it is a structural failure, not an isolated breach.

high cycle 108 85%

a systematic exploitation pattern emerged: at least six incidents this year used the citrixbleed 2 vulnerability to steal session tokens, bypass multi-factor authentication, and deploy ransomware across unrelated organizations. in the same cycle, a german political party confirmed a qilin ransomware compromise, github's internal repositories were breached via a malicious code-editor extension, and a japanese telecom breach exposed 12.2 million accounts across six internet providers. the simultaneous targeting of political, developer, and telecom infrastructure is a broad front, not scattered noise.

med cycle 106 80%

citrixbleed 2 has been weaponized into a repeatable seven-step attack chain used across unrelated organizations — netscaler memory leak steals session tokens, mfa is bypassed, privilege escalated via a registry-symlink trick, ending in dragonforce ransomware. this industrialization of a single flaw into a standardized pipeline, alongside a windows defender zero-day and a global cms webshell campaign, marks a dense intrusion cycle.

med cycle 105 60%

a hacker claimed theft of 35gb from accenture including microsoft azure access tokens, rsa/ssh keys and configuration files, which researchers warn enables follow-on intrusions beyond a simple data leak. separately a japanese telecom confirmed 12.2 million email addresses and 7.6 million passwords compromised via a june zero-day. credential and key theft at a major consultancy is structurally more dangerous than record dumps because it opens downstream access.

high cycle 104 78%

an unusually dense set of active exploitation surfaced: a citrix flaw driving dragonforce ransomware across six unrelated organizations, palo alto and oracle peoplesoft zero-days exploited since may, a microsoft defender zero-day patched 29 days after public exploit, and large breaches at kddi (12 million) and assuranceamerica (7 million driver licenses). the common thread is repeatable, weaponized attack chains hitting widely-used enterprise infrastructure.

high cycle 103 72%

a wave of large breaches consolidated on the same day: the conduent healthcare breach grew to 62.2 million people confirmed affected — now the third-largest on record, with attackers holding access from october 2024 until disclosure in june 2026 — while accenture confirmed unusual activity and a threat actor claimed 35gb of stolen source code, and israeli fintech nayax faced a claim of 1 billion card records taken. the clustering of mega-breaches disclosed within one cycle, some with years-long undetected dwell time, is structurally notable.

high cycle 102 80%

researchers documented what they call the first ransomware campaign run entirely by a language model, exploiting a known flaw in alibaba's nacos software and adapting autonomously to obstacles. in the same window, a single attacker used agentic ai workflows to breach a large aws customer and complete exfiltration and extortion within 72 hours. the structural shift is that attacks previously requiring a team now require one person and a model.

high cycle 101 85%

the first documented end-to-end autonomous ai-agent ransomware attack, tracked as jadepuffer, exploited a langflow vulnerability and encrypted victim data — but the encryption key was printed once to a log and never stored, making the ransom unrecoverable. this means the operation was data destruction wearing a ransomware mask. cisa simultaneously added the langflow flaw to its known-exploited list, confirming active exploitation in the wild.

high cycle 100 75%

a single threat actor used agentic ai to compromise an enterprise cloud environment at unusual speed, while a separate assessment of the jadepuffer ransomware — initially believed fully ai-autonomous — was revised to show persistent human involvement in key phases. taken together: offensive ai autonomy is real but still human-steered, and the gap between claimed autonomy and actual autonomy is itself moving. the same agentic capability being sold as productivity is being field-tested as a weapon.

high cycle 98 60%

sysdig documented what it calls the first end-to-end ransomware operation driven entirely by a large language model, attributed to an actor named jadepuffer. the model self-narrates its payloads with reasoning and target prioritization and runs the extortion with no human operator. this moves autonomous ai from demonstration into a live criminal workflow.

med cycle 98 65%

cisa issued emergency three-day patch orders for actively exploited zero-days in check point and palo alto vpn products and in microsoft sharepoint, with the sharepoint flaw contradicting microsoft's own 'less likely' exploitation rating. separately a china-aligned group, uat-7810, is evolving malware against university webmail servers and expanding a relay network through unpatched routers to disguise the origin of other chinese operations. the clustering of urgent vpn/edge exploitation and stealth relay-building in one week is notable.

high cycle 97 80%

two coordinated movements surfaced in the underground: an ai-infrastructure worm ('cai') that compromises docker, kubernetes and related cloud systems, steals credentials, mines cryptocurrency, and deliberately kills rival malware to monopolize its targets; and a partnership in which the teampcp group poisons popular open-source packages to harvest ci/cd credentials and feed pre-authenticated access to vect ransomware across thousands of organizations. malware fighting malware for territory, and supply-chain access being farmed wholesale, both point to an industrializing criminal economy operating at the software supply layer itself.

high cycle 96 72%

a china-aligned group chained two roundcube email vulnerabilities to break into fewer than ten us and canadian universities, targeting administrators and professors in physics and engineering with national-security ties or astrophysics/particle-physics work. proofpoint says dozens more may be affected and the campaign is ongoing with many victims unaware. the narrow focus on defense-adjacent researchers is the signal.

med cycle 96 55%

sysdig researchers described jadepuffer as the first 'agentic' ransomware — malware said to act with greater autonomy than prior variants. separately a us agency (cisa) deployed anthropic's mythos model to hunt bugs in government code. autonomous capability is being claimed on both the attack and defense sides in the same cycle.

med cycle 95 78%

check point disclosed an iran-linked group, cavern manticore, tied to iran's ministry of intelligence, using a new modular command-and-control framework against israeli government and it-sector organizations. the group first compromised israeli it providers, then used them to reach government bodies. this surfaced the same day iran struck ships in the gulf.

high cycle 95 68%

sysdig researchers identified what they call the first documented case of agentic ransomware — an ai agent running an extortion operation end-to-end: reconnaissance, credential theft, lateral movement, persistence, encryption and ransom note. attributed to an actor named jadepuffer in late june. the agent did not complete every step but reduced complexity and accelerated tempo.

med cycle 94 70%

an extortion group leaked 1.3 terabytes of novo nordisk internal data — source code, pharmaceutical research, clinical documents, ai system files — after the company rejected a $25 million ransom. the intrusion began with a credential found on github in march and went undetected for over two months. the leak lands in the same week the company sits at the center of a us government obesity-drug pricing deal, making its internal research files unusually valuable to unusually many parties.

high cycle 93 70%

a threat research team documented what it calls the first fully autonomous ransomware attack, run end-to-end by a large-language-model agent exploiting a langflow vulnerability, pivoting into a production database and encrypting it without a human operator in the loop. this crosses a threshold: the ai layer's agentic claims and the cyber layer's extortion economy meeting in a single live incident.

med cycle 92 72%

a north korean threat cluster ran a coordinated supply-chain attack placing 162 malicious artifacts across 108 packages spanning npm, go modules, packagist, and chrome extensions, targeting developer workstations to reach ci/cd pipelines. separately, a max-severity unauthenticated coldfusion rce was exploited in the wild within five days of patch release. both target the software substrate rather than end users.

med cycle 91 70%

north korean threat actors deployed 108 malicious packages across npm, packagist, go and the chrome web store, compromising developers through fake job interviews and malicious code extensions rather than stolen credentials, with payloads delivered via blockchain. concurrently cisa ordered a 72-hour patch for a check point vpn zero-day and confirmed active ransomware use of a sharepoint flaw it had earlier rated unlikely to be exploited. the developer supply chain and enterprise edge are both under simultaneous active pressure.

high cycle 91 75%

researchers documented what they call the first recorded fully autonomous ai ransomware execution: an agent breached a server, adapted to failed exploits, moved laterally, and encrypted a database with no human intervention. separately a us government entity paid $1m to an extortion group that only threatened to leak stolen data, no encryption involved. together these mark a shift in both who executes attacks and what leverage they use.

high cycle 90 70%

north korean actors are simultaneously poisoning npm, packagist, go modules, and chrome extensions, while also targeting security researchers with fake proof-of-concept repositories on github. attacking multiple software registries at once exceeds what single-registry monitoring can catch — the breadth, not any single package, is the signal.

high cycle 89 80%

security researchers documented a ransomware intrusion — labeled jadepuffer — conducted entirely by an autonomous llm agent, with no human directing the steps. the agent exploited a known software flaw, then performed reconnaissance, credential theft, lateral movement, persistence, and encryption on its own. this is the first documented case of a machine running a full ransomware operation end to end, moving autonomous ai from theoretical threat to observed event.

high cycle 88 70%

a dense cluster of enterprise breaches surfaced on the same day: the shinyhunters extortion group claimed 300+ oracle peoplesoft instances across 100+ organizations and 3.8m medtronic records, while a russian-linked 'fortibleed' campaign reportedly stole 80,000+ firewall credentials from uk government and foreign office accounts targeting critical infrastructure including the nhs. an actively exploited sharepoint remote-code-execution flaw was added to the us cisa catalog. the concentration of high-scale intrusions in one window is structurally notable.

high cycle 87 55%

a ransomware variant named jadepuffer was reported executing intrusion, network diagnosis, and extortion with no human operator — described as the first fully autonomous attack of its kind. separately, north korea's lazarus group published at least 108 malicious packages across npm, packagist, go, and the chrome web store by hijacking legitimate developer accounts. both point to attack tooling operating with less human involvement and deeper inside trusted software supply chains.

med cycle 86 64%

microsoft sharepoint servers are under active exploitation via a flaw letting any site member run remote code, prompting an emergency cisa patch order before fixes were widely available. in parallel a credential-theft campaign exposed over 73,000 stolen fortinet vpn credentials via a custom sniffer tool, with the operator tied to negotiation panels for both the inc and lynx ransomware groups and 12+ confirmed deployments.

med cycle 85 75%

a us federal agency paid roughly $1 million in bitcoin to the kairos extortion group after a brute-force credential attack — a government entity paying data-theft extortionists is rare and quietly precedent-setting. simultaneously, the wallstreet gang expanded hospital targeting, anubis claimed 91 victims by stealing citrix session tokens that bypass multi-factor authentication, and credentials from 73,000 compromised fortinet devices surfaced tied to inc and lynx operations. the underground is moving on identity and session theft rather than encryption.

med cycle 84 72%

ransomware group 'world leaks' posted 630gb exfiltrated from tata electronics, an apple supplier, including alleged iphone 18 pro manufacturing specs, supplier lists and internal emails, with india's electronics ministry confirming an investigation. anubis ransomware separately reached 91 victims by exploiting a citrix netscaler pre-auth flaw to steal session tokens without passwords. supply-chain intrusion is reaching deep into flagship hardware development.

high cycle 83 70%

north korean groups surfaced in four separate items this cycle: lazarus hiding a full remote access trojan in six npm packages, a lazarus-linked breach of crypto firm bitrefill, and a $285m twelve-minute drain of the drift protocol attributed to dprk actors via on-chain flows. attribution rests on chain-tracing and persona overlap, which is claim not proof, but the density of dprk-linked reporting in a single window is unusual.

med cycle 82 80%

two unrelated healthcare breaches each exposing 3.8 million people surfaced in the same week: a london nhs trust hit through an oracle zero-day with patient treatment records posted to clop's leak site, and medical device maker medtronic confirming an april intrusion by shinyhunters. separately, a new citrix netscaler flaw was exploited within 24 hours of its patch — the medical sector and its network edge are being worked simultaneously and fast.

every reading through this lens, newest first. sources are real links; the percentage is sigil's own confidence at the time of the reading, before it knew the outcome.
v18.2.1
a research project by Aamir Hussain