diff --git a/circl/machinetag.json b/circl/machinetag.json
index 9865e5b..a518313 100644
--- a/circl/machinetag.json
+++ b/circl/machinetag.json
@@ -24,6 +24,14 @@
           "value": "system-compromise",
           "expanded": "System compromise"
         },
+        {
+	  "value": "sabotage",
+	  "expanded": "Sabotage"
+	},
+	{
+	  "value": "gdpr-violation",
+	  "expanded": "GDPR Violation"
+	},
         {
           "value": "scan",
           "expanded": "Scan"
@@ -40,6 +48,14 @@
           "value": "phishing",
           "expanded": "Phishing"
         },
+        {
+	  "value": "whaling",
+	  "expanded": "Whaling"
+	},
+        {
+	  "value": "smishing",
+	  "expanded": "Sms Phishing"
+	},
         {
           "value": "malware",
           "expanded": "Malware"
@@ -56,6 +72,10 @@
           "value": "fastflux",
           "expanded": "Fastflux"
         },
+        {
+          "value": "domain-fronting",
+          "expanded": "Domain Fronting"
+        },
         {
           "value": "sql-injection",
           "expanded": "SQL Injection"
@@ -88,12 +108,41 @@
           "value": "sextortion",
           "expanded": "sextortion"
         },
+        {
+	  "value": "social-engineering",
+	  "expanded": "Social Engineering"
+	},
+	{
+	  "value": "gdpr-violation",
+	  "expanded": "GDPR Violation"
+	},
         {
           "value": "covid-19",
           "expanded": "covid-19"
         }
       ]
     },
+    {
+      "predicate": "information-classfication",
+      "entry": [
+	{
+          "value": "confidential",
+          "expanded": "Confidential Information (top confidentiality level)"
+	},
+	{
+	  "value": "restricted",
+	  "expanded": "Restricted Information (medium confidentiality level)"
+	},
+	{
+	"value": "internal-use",
+	"expanded": "Internal Use Information (lowest level of confidentiality)"
+	},
+	{
+	"value": "public",
+	"expanded": "Public Information (everyone can see the information)"
+	}
+      ]
+    },
     {
       "predicate": "topic",
       "entry": [