Upcoming Changes to ThreatMapper Threat Intel Feeds: What You Need to Know

As we begin 2025, we’d like to share some important updates regarding ThreatMapper that will take effect on January 24th, 2025, at 12 PM PST. These changes are designed to better align our open-source offering with the evolving needs of the ThreatMapper community while introducing new options for users with advanced requirements.

Key Updates to Threat Intelligence Feeds

1. Quarterly Updates for Threat Intelligence Feeds - Starting with ThreatMapper version 2.2 and above, Threat Intelligence feeds will now be updated once per quarter instead of daily. This change ensures that we continue to support our open-source community while allowing greater flexibility to develop premium services for users who require advanced security capabilities.
2. Daily Updates Now a Paid Offering - If your organization requires daily Threat Intelligence updates to ensure real-time coverage, we now offer this as a paid, premium service. For details and to enable this feature, please reach out to us at support@deepfence.io.
3. Deprecation of Feeds for Legacy Versions - Vulnerability feeds for ThreatMapper versions below 2.2 will be deprecated. To maintain access to updated intelligence, users running legacy versions are encouraged to upgrade to the latest release (version 2.5.2).

Why Updated Feeds Matter

Security landscapes evolve rapidly, with new vulnerabilities and exploits being identified daily. If your Threat Intelligence feeds are outdated, the scanner will continue operating using the last available feed, ensuring workflows remain uninterrupted. However, without updated feeds, your infrastructure and applications will lack protection against newly discovered threats. This gap could expose your systems to vulnerabilities that attackers are actively exploiting.

By maintaining updated feeds—either through quarterly updates or our premium daily service—you can ensure your organization remains protected against the latest risks identified by the security community.

Additional Notes

• ThreatStryker Users: These changes do not apply to ThreatStryker installations, which will continue operating as before.
• Rollout Timeline: All changes will be implemented on January 24th, 2025, at 12 PM PST.

How to Prepare

We understand that these updates may represent a change for some users. To ensure a smooth transition:

• Upgrade to the Latest Version: If you are running a version below 2.2, upgrading to version 2.5.2 will ensure continued access to Threat Intelligence feeds.
• Evaluate Your Update Needs: If daily updates are critical for your use case, contact our support team at support@deepfence.io to discuss enabling the paid daily feed service.

Building a More Secure Future Together

At Deepfence, our mission is to empower our community to tackle today’s evolving security challenges. These changes reflect our commitment to providing robust open-source solutions while offering premium options for users with advanced needs. Together, let’s continue building a safer, more secure ecosystem in 2025 and beyond.

If you have any questions or need assistance, don’t hesitate to reach out at support@deepfence.io.

Here’s to a secure and successful year ahead!

The Deepfence Team