💭 Did you know? Am I Under Attack monitors your Security Engine alerts 24/7 so you don’t have to.
This means that while CrowdSec’s AI keeps an eye on unusual patterns and potential threats, your team can focus on critical security tasks 🔥
👉 www.crowdsec.net/blog/am-i-un...
🚨 In this week’s newsletter, we cover CVE-2026-21445, a Langflow authentication bypass now under active exploitation. We break down how PoCs turned into real attacks and what defenders should do next.
Read the full analysis and protect your systems 👉 www.crowdsec.net/vulntracking...
OWASP CRS gives you solid protection.
CrowdSec makes it adaptive.
Together, they help you block both known and emerging threats 👇
www.crowdsec.net/blog/protect...
#CyberSecurity #WebSecurity
🚨 CVE-2025-4396 is seeing a surge in exploitation attempts.
This SQL injection vulnerability in the WordPress Relevanssi plugin has attracted over 16,500 attacking IPs, mostly targeting small sites with limited security.
Learn how to defend against it 👇
www.crowdsec.net/vulntracking...
🚀 CrowdSec is hiring!
We’re growing our data team and looking for:
• Data Analyst
• Data Analyst Intern
If you enjoy working with data, uncovering patterns, and contributing to real-world security, this is your chance to make an impact.
🔗 Apply now: www.crowdsec.net/join-our-team
💭 Did you know? CrowdSec helps reduce alert fatigue by 80% by blocking threats automatically.
This means that instead of chasing endless alerts, your security team can focus on real incidents 🔥
Learn more about how CrowdSec automates threat blocking: www.crowdsec.net/blocklists
Cybersecurity doesn’t fail from lack of effort.
It fails from wrong assumptions.
Swipe through to see which myth might be increasing your risk 👇
And read our article to get all the details: www.crowdsec.net/blog/5-commo...
#ButanGas, a major player in Italy’s energy sector, is taking its cybersecurity to the next level ⚡
With our real-time threat intelligence and Platinum Blocklists, they’re now blocking hundreds of malicious connections daily, while keeping false positives under 1%.
www.crowdsec.net/blog/securin...
When healthcare systems go down, it’s not just IT; it’s patient care.
Cybersecurity needs to be proactive, automated, and resilient by design.
Here are 4 ways to strengthen your defenses 👇
www.crowdsec.net/blog/4-ways-...
#Healthcare #CyberSecurity
AI crawlers don’t just “index” your site anymore.
They scrape aggressively, ignore robots.txt, and consume real resources.
This isn’t just SEO noise; it’s an operational issue.
Block unwanted AI bots before they impact your infra 👇
www.crowdsec.net/blog/protect...
#AI #CyberSecurity #Infosec
We heard you when you said you needed more than the standard Premium CTI quota for your SOC/HomeLab/SIEM.
We are thrilled to announce that we’re introducing Self-Service CTI API Key options. You can now opt for higher quotas that match your actual usage. 🔐
Learn more: app.crowdsec.net/pricing
🚨 In this week’s threat alert, CrowdSec reports on CVE-2026-1207, a critical Django SQL injection vulnerability now actively exploited in the wild. Attackers are targeting GeoDjango setups using PostGIS with focused reconnaissance.
Learn more: www.crowdsec.net/vulntracking...
New Console Feature Drop: Attack Map is LIVE! 🌍⚡
See exactly where attacks are coming from, identify top scenarios, and track malicious IPs, all in an interactive map.
Check it out: app.crowdsec.net/alerts
Le Monde leverages CrowdSec to automate firewall updates, block malicious IPs, and defend against phishing, scans, and other threats, while saving valuable time for its IT team.
Discover the story behind their security strategy 👉 www.crowdsec.net/blog/le-mond...
#LeMonde #cybersecurity
Join us next week for an interactive Community Office Hours!
Get an exclusive preview of what’s coming next for the CrowdSec WAF. We’ll unveil upcoming features, including:
🔎 Smarter bot detection
⚙️Easier rule creation via the local MCP
📅 Join us here: www.youtube.com/live/UlAamXE...
Kubernetes networking is evolving with the rise of the Gateway API.
CrowdSec continues to support Ingress-NGINX during its final lifecycle, while helping users migrate to modern ingress controllers, or Gateway API integrations 🔒.
Learn more: www.crowdsec.net/blog/crowdse...
🚨 In this week’s threat alert, CrowdSec reports on CVE-2026-23744, a critical RCE in MCPJam Inspector. Exploitation attempts are rising, targeting exposed dev environments.
Learn how the vulnerability works and how to secure your systems in our latest article 👉 www.crowdsec.net/vulntracking...
🚀🎉 Big news: CrowdSec Blocklists are now available on the Amazon Web Services (AWS) Marketplace!
Learn more: aws.amazon.com/marketplace/...
New CVE? We immediately analyze exploitability, validate impact, and ship patches or virtual protections fast to shrink the exposure window.
Watch the full video to learn more 👉 youtube.com/live/oedE1_y...
#WAF #virtualpatching #CVE #cybersecurity
Thousands of CVEs. But which ones are actually being exploited right now?
Live Exploit Tracker cuts through the noise by showing vulnerabilities that attackers are actively exploiting in the wild, based on real attacks observed across 1000s production systems.
👉 www.crowdsec.net/live-exploit...
What if your logs already show signs of a targeted attack, but the pattern is easy to miss? 🔎
Am I Under Attack analyzes alert activity with AI to identify suspicious surges and notify you when your infrastructure may be under threat. 🚨
Read more: www.crowdsec.net/blog/am-i-un...
🚨 In this week’s threat alert, we dive into CVE-2025-20281, a critical Cisco Identity Services Engine (ISE) RCE vulnerability, as CrowdSec Threat Intelligence observes a new wave of exploitation attempts.
Read the full article 👉 www.crowdsec.net/vulntracking...
Check out #hackaday’s latest #FLOSS weekly episode featuring our CEO Philippe Humeau.
In this episode, Jonathan Bennett chats with Philippe about CrowdSec and how we created an open source Web Application Firewall that runs as a Multiplayer Firewall.
hackaday.com/2026/03/04/f...
A vulnerability is a weakness.
A threat is who can exploit it.
Risk is the likelihood × impact.
Confusing them leads to bad prioritization & preventable incidents.
We break down the vulnerability lifecycle & its implications for developers & maintainers.
Read now👉 www.crowdsec.net/blog/vulnera...
The Community Blocklist blocks a lot. But the Threat Forecast Blocklist goes further:
📊 ~50% more attackers blocked
📊 1:40 prevention ratio
📊 Built from your own attack patterns
Available for the CrowdSec Console Premium plan.
Learn more 👉 www.crowdsec.net/blog/threat-...
🛑 Stop known attackers before they reach your network.
Here’s how to plug🔌 CrowdSec’s IP endpoint into Sophos Firewall and instantly benefit from global threat intelligence.
Watch the full video here: youtu.be/lmqzFpHpYyw?...
#blocklists #ipfeeds #cybersecurity #firewall #sophos
🚨 This week’s CrowdSec Threat Alert: CVE-2026-21859, a critical SSRF vulnerability in Mailpit, is being actively exploited to map internal networks and access sensitive infrastructure.
See more in our latest article 👉 www.crowdsec.net/vulntracking...
Missed our Community Office Hours? No worries, the replay is ready! 🎥
Yesterday, we took a deep dive into Stack Health and shared real-world insights straight from production deployments.
Catch the replay here 👉 youtu.be/knoVkVg-8Ds
Writing WAF rules shouldn’t feel like decoding ancient YAML scrolls 📜
So we built a Model Context Protocol (MCP) for CrowdSec that lets your favorite LLM generate production-ready WAF rules, with validation and feedback loops built in 🤖
Learn more and get started 👉 www.crowdsec.net/blog/crowdse...
💭 Did you know? ⟶ CrowdSec’s Live Exploit Tracker monitors 650+ CVEs actively exploited in the wild, more than half of all publicly known exploited vulnerabilities.
Learn more about the CrowdSec Live Exploit Tracker: www.crowdsec.net/live-exploit...
