Threat Modeling and Security by Design

Threat modeling tooling: Use our tool to start threat modeling within minutes.

Solve your threat modeling problems: We can help you to implement threat modeling and security by design.

Learn about threat modeling: We have lots of content to teach you about threat modeling.

Our Threat Modeling Tool Helps you to Perform Structured Threat Modeling at Scale

It’s easy to get started with threat modeling and gain initial security value from it. However, rolling out structured threat modeling at scale is a different matter. Our threat modeling tool helps you to get the most of threat modeling, in order to apply security by design and default.

  • Powerful assessment engine to understand potential threats and security weakness.
  • Flexible Diagram engine to visualize components and communication flows in play.
  • Clear reporting and metrics for compliance demonstration.

Try our threat modeling tool and get started within minutes!

Methods

Learn about the various threat modeling methods such as STRIDE, PASTA, LINDDUN, and Persona non Grata.

Tooling

We have a full list of threat modeling tools that can help to perform threat modeling. Including our own threat modeling tool.

Templates

Templates can help to kickstart the process. We have lots of free templates available.

Examples

We believe that you learn best from practical and real-world examples. We have lots of example cases and threat models available.

Helix Vishing Group Targets SharePoint Data Theft; Ill Bloom Crypto Wallet Vulnerability Drains $5M; Injective SDK on npm Infected

TTP Advisory: Multiple Threats | Helix Vishing: New SharePoint data theft via voice phishing | Ill Bloom: Crypto wallet recovery phrase weakness — $5M+ stolen | Injective SDK: npm package infected with crypto wallet stealer Helix Vishing Group — Voice Phishing Targeting SharePoint Data Theft A new threat actor tracked as ‘Helix’ is using voice-based phishing (vishing) to target Microsoft 365 users and steal…

Continue Reading Helix Vishing Group Targets SharePoint Data Theft; Ill Bloom Crypto Wallet Vulnerability Drains $5M; Injective SDK on npm Infected

XRING: Unpatched XQUIC Flaw Lets Remote Clients Crash HTTP/3 Servers — No Fix Available

TTP Advisory: XRING | No CVE | Severity: High (DoS) | Vendor: Alibaba | Product: XQUIC (QUIC/HTTP/3 library) | Affected: All releases through v1.9.4 | Impact: Tengine, Alibaba Cloud, Taobao, Alipay | Discovered by: FoxIO (Sebastien Fery) What Is the Vulnerability FoxIO researcher Sebastien Fery disclosed an unpatched vulnerability in XQUIC, Alibaba’s open-source QUIC and HTTP/3 library, nicknamed ‘XRING’. The flaw allows any remote…

Continue Reading XRING: Unpatched XQUIC Flaw Lets Remote Clients Crash HTTP/3 Servers — No Fix Available

Zimbra Collaboration Suite Critical XSS Vulnerability in Classic Web Client — Patch Urged Immediately

CVE: CVE pending | Severity: Critical | CWE: CWE-79 (Cross-Site Scripting) | Vendor: Zimbra (Synacor) | Product: Zimbra Collaboration Suite — Classic Web Client | Status: Patch available, urged by Zimbra security team What Is the Vulnerability Zimbra has disclosed a critical cross-site scripting (XSS) vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite. Zimbra’s security team has urged all…

Continue Reading Zimbra Collaboration Suite Critical XSS Vulnerability in Classic Web Client — Patch Urged Immediately

GigaWiper / BLUERABBIT: Iranian-Linked Destructive Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware

TTP Advisory: GigaWiper / BLUERABBIT | No CVE | Threat Actor: Likely Iranian (per Google TIG) | Target: Windows systems | Capabilities: Disk wiping, fake ransomware, spyware, remote control | Discovered by: Microsoft / Binary Defense What Happened Microsoft has analysed a destructive Windows backdoor called GigaWiper that bundles three older destructive programs into one tool, offered as commands the operator can choose from.…

Continue Reading GigaWiper / BLUERABBIT: Iranian-Linked Destructive Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware

WP-SHELLSTORM: Webshell Brokerage Targets 1.4 Million WordPress and Joomla Sites — Breeze Caching Plugin and JCE Editor Exploited

TTP Advisory: WP-SHELLSTORM | No CVE | Operation Type: Webshell Access Brokerage | Targets: WordPress (Breeze caching plugin) + Joomla (JCE editor) | Sites Scanned: 1.4 million | Discovered by: SOCRadar What Happened A cybercrime crew left one of its own servers exposed on the internet for three weeks, revealing the inner workings of a mass site-hacking operation tracked as WP-SHELLSTORM. SOCRadar discovered the…

Continue Reading WP-SHELLSTORM: Webshell Brokerage Targets 1.4 Million WordPress and Joomla Sites — Breeze Caching Plugin and JCE Editor Exploited

Vulnerability Intelligence Report — July 10, 2026

Vulnerability Intelligence Report — July 10, 2026 KEV DEADLINES TODAY: ColdFusion, 2x Joomla, Langflow | XRING: Unpatched XQUIC flaw crashes HTTP/3 servers globally | Zimbra critical XSS in Classic Web Client | WP-SHELLSTORM: 1.4M WordPress sites targeted via Breeze/JCE exploits | GigaWiper: Iranian-linked destructive Windows backdoor | Helix vishing group targets SharePoint | Microsoft expects more AI-discovered security bugs Previous reports: July 9, 2026…

Continue Reading Vulnerability Intelligence Report — July 10, 2026