# Recent Threats Dashboard

* [**Go to your Recent Threats Dashboard**](https://platform.liberty91.com/disco/index)

The Recent Threats Dashboard shows your Events in chronological order. All new events are shown here. This is useful because you can have this dashboard open on a second screen, or on a wall screen in an Operations Center, and you can always keep an eye on what's going on *right now*. You'll also be able to quickly spot anything of importance because of the [tags](#events).&#x20;

<figure><img src="/files/wBRcQ7xlbf6yTYmkeCRp" alt=""><figcaption><p>The Recent Threats Dashboard</p></figcaption></figure>

The Recent Threats Dashboard has 2 or 3 columns, depending on your license:

* **Open Source**

Everything from public & free, non-social media sources will come in in this column. Blogposts and news articles from security websites and vendors will appear here. as well as vulnerability reports. If you feel some of these sources are too noisy, or irrelevant to you, you can turn news sources on and off in the [news module](/modules/collection-modules/the-news-module.md).

* **Premium & Darkweb**

These are your paid-for sources. Most of them work on a bring-your-own-license basis, which means that you need to already have a subscription with the vendors to be able to pull their reports and data in. All you have to do is provide your API-key of the tools and sources you have access to and want to integrate with Liberty91. You can turn the integrations on and off in the [Modules](/modules/getting-started-with-modules.md) dashboard.&#x20;

If you subscribe to the Darkweb Module, you will the darkweb alerts appear here as well.&#x20;

* **X**&#x20;

You can follow your favourite Security Researchers on X, and their tweets will appear here. You can choose which X-accounts to follow in the [X Module](/modules/collection-modules/the-x-twitter-module.md).

#### Events

Every event shows you the source, the title, and how long ago it was created. If there are any hits with entities in your Threat Library or your Company Assets, it will show as a tag. Threat Actors are purple, malware is blue and vulnerabilities are black (white in darkmode) tags. Liberty91 also extracts Techniques Tactics & Procedures as MITRE ATT\&CK Techniques from the Event. If techniques are found, their codes are presented as part of the event on the dashboard. You can find out more about how the technique is described in this event by hovering over the technique.

&#x20;

<figure><img src="/files/WwCYbCXLY3S2U4FSplM8" alt="" width="316"><figcaption><p>This event was created 27 minutes ago by The Cyber Express, and describes Cobalt Strike, which we track as malware in our Threat Library. It also shows seven MITRE ATT&#x26;CK Techniques related to this event. </p></figcaption></figure>

<div align="right"><figure><img src="/files/5pwP1UqTgb8MUNR9vzwU" alt="" width="353"><figcaption><p>Hovering over the MITRE ATT&#x26;CK Technique shows the name of the technique, plus a description of how this technique was used in this particular campaign</p></figcaption></figure></div>

This is useful because you can immediately see if an event is relevant to you or not. Clicking on the event will lead you to the [Event Card](/dashboards/event-cards.md).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.liberty91.com/dashboards/recent-threats-dashboard.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.