ππ Big news: CrowdSec Blocklists are now available on the Amazon Web Services (AWS) Marketplace!
Learn more: aws.amazon.com/marketplace/...
13.03.2026 14:36
π 0
π 0
π¬ 0
π 0
ππ Big news: CrowdSec Blocklists are now available on the Amazon Web Services (AWS) Marketplace!
Learn more: aws.amazon.com/marketplace/...
New CVE? We immediately analyze exploitability, validate impact, and ship patches or virtual protections fast to shrink the exposure window.Β
Watch the full video to learn more π youtube.com/live/oedE1_y...
#WAF #virtualpatching #CVE #cybersecurity
Thousands of CVEs. But which ones are actually being exploited right now?
Live Exploit Tracker cuts through the noise by showing vulnerabilities that attackers are actively exploiting in the wild, based on real attacks observed across 1000s production systems.
π www.crowdsec.net/live-exploit...
What if your logs already show signs of a targeted attack, but the pattern is easy to miss? π
Am I Under Attack analyzes alert activity with AI to identify suspicious surges and notify you when your infrastructure may be under threat. π¨
Read more: www.crowdsec.net/blog/am-i-un...
π¨ In this weekβs threat alert, we dive into CVE-2025-20281, a critical Cisco Identity Services Engine (ISE) RCE vulnerability, as CrowdSec Threat Intelligence observes a new wave of exploitation attempts.
Read the full article π www.crowdsec.net/vulntracking...
Check out #hackadayβs latest #FLOSS weekly episode featuring our CEO Philippe Humeau.
In this episode, Jonathan Bennett chats with Philippe about CrowdSec and how we created an open source Web Application Firewall that runs as a Multiplayer Firewall.
hackaday.com/2026/03/04/f...
A vulnerability is a weakness.
A threat is who can exploit it.
Risk is the likelihood Γ impact.
Confusing them leads to bad prioritization & preventable incidents.
We break down the vulnerability lifecycle & its implications for developers & maintainers.
Read nowπ www.crowdsec.net/blog/vulnera...
The Community Blocklist blocks a lot. But the Threat Forecast Blocklist goes further:
π ~50% more attackers blocked
π 1:40 prevention ratio
π Built from your own attack patterns
Available for the CrowdSec Console Premium plan.
Learn more π www.crowdsec.net/blog/threat-...
πΒ Stop known attackers before they reach your network.
Hereβs how to plugπΒ CrowdSecβs IP endpoint into Sophos Firewall and instantly benefit from global threat intelligence.
Watch the full video here: youtu.be/lmqzFpHpYyw?...Β Β
#blocklists #ipfeeds #cybersecurity #firewall #sophos
π¨ This weekβs CrowdSec Threat Alert: CVE-2026-21859, a critical SSRF vulnerability in Mailpit, is being actively exploited to map internal networks and access sensitive infrastructure.
See more in our latest article π www.crowdsec.net/vulntracking...
Missed our Community Office Hours? No worries, the replay is ready! π₯
Yesterday, we took a deep dive into Stack Health and shared real-world insights straight from production deployments.
Catch the replay here π youtu.be/knoVkVg-8Ds
Writing WAF rules shouldnβt feel like decoding ancient YAML scrolls π
So we built a Model Context Protocol (MCP) for CrowdSec that lets your favorite LLM generate production-ready WAF rules, with validation and feedback loops built in π€
Learn more and get started π www.crowdsec.net/blog/crowdse...
π Did you know? βΆ CrowdSecβs Live Exploit Tracker monitors 650+ CVEs actively exploited in the wild, more than half of all publicly known exploited vulnerabilities.
Learn more about the CrowdSec Live Exploit Tracker: www.crowdsec.net/live-exploit...
π©ΊThe Stack Health feature in the CrowdSec Console is a monitoring tool designed to help you maintain your infrastructureβs operational status and ensure itβs properly configured.
Want to learn more? Join our next #COH on February 26th at 5 PM CET.
Join here: www.youtube.com/watch?v=oedE...
Myth: CVSS scores tell the whole story
A CVSS score reflects theoretical severity, not your organizationβs actual risk.
A number alone isnβt enough. Real risk depends on context.
π Discover the other common vulnerability myths: www.crowdsec.net/blog/5-commo...
Here at CrowdSec, we split intelligence into 2 layers π
π CTI gives you context.
π TTI enforces.
Read our article to learn more about how CTI + TTI built on production telemetry changes the game: www.crowdsec.net/blog/honeypo...
ποΈ Save the date for this monthβs Community Office Hours: Feb 26 at 5 PM CET
Join us for a focused session on CrowdSec Stack Health.
π Get all the details here: www.youtube.com/watch?v=oedE...
π¨ This weekβs CrowdSec Threat Alert: CVE-2025-56520, an actively exploited SSRF vulnerability in Dify, is enabling reconnaissance and internal network probing across exposed AI platforms.
Learn more π www.crowdsec.net/vulntracking...
π₯ Missed our webinar with #Suricata? The replay is live!
CrowdSec CTO Thibault Koechlin breaks down the CrowdSec + Suricata integration, from parsing logs to blocking malicious IPs, with a live demo to show it in action.
π Watch now: www.youtube.com/watch?v=af_K...
Web applications are a prime target for attackers, and the threat is only growing.Β
But what if you could block over 75% of malicious traffic before it even reaches your server, with just a few commands?Β
Learn more π www.crowdsec.net/blog/strengt...
Europe gets a boost in vulnerability intelligence! π
db.gcve.eu is now live, an open, European-operated advisory database. CrowdSec complements it with real-world exploit data via our Live Exploit Tracker.
Defenders deserve actionable signals, not just scores.
π www.crowdsec.net/blog/crowdse...
CrowdSec TCP protection helps MSPs & hosters stop mass attacks automatically, using shared threat intelligence, not manual rules.
Watch the full video here to learn more: www.youtube.com/watch?v=knoV...
π¨ This weekβs CrowdSec Threat Alert: CVE-2026-1281, a pre-auth RCE in Ivanti EPMM, is actively exploited in the wild, putting Enterprise Mobile Management at risk worldwide.
Discover all the details in our latest article π www.crowdsec.net/vulntracking...
β³Secure your web apps in just 4 minutes!
Follow this tutorial & unlock its full potential:
β
Traditional WAF protection enhanced with advanced CrowdSec behavioral detection
β
Effortless virtual patching
β
Full compatibility with your existing ModSecurity rules
π₯ www.youtube.com/watch?v=LyNf...
πIntroducing Live Exploit Tracker, the latest addition to CrowdSecβs security arsenal.
L.E.T. delivers ground-truth threat intelligence based on real attacks observed across hundreds of thousands of production systems worldwide.
Learn more & get started today β www.crowdsec.net/blog/introdu...
Itβs been a minute since we last shined a light on CrowdSec Academy, so hereβs your reminder π
You can learn the fundamentals of cybersecurity and master CrowdSecβs open-source Security Engine, completely free.
π Start learning now β academy.crowdsec.net/home
β¨ The CrowdSec Console Premium free trial is now 30 days π
, giving you more time to evaluate advanced features in real conditions properly.
Learn more β doc.crowdsec.net/u/console/pr...
π¨ This weekβs CrowdSec Threat Alert article highlights CVE-2025-68645 (LFI) and CVE-2022-27926 (XSS), actively exploited in the wild against Zimbra Collaboration servers.
Explore attack details, threat trends, and mitigation steps in the article π www.crowdsec.net/vulntracking...
Weβre proud to be included in the VulnCheck State of Exploitation 2026 report and recognized for CrowdSecβs growth as a leading source in first reporting KEVs throughout 2025.
Big thanks to @vulncheck.bsky.social for the recognition.
π Read the full article:
www.vulncheck.com/blog/state-o...
Watch the full Open Source HAProxy-Native Security webinar replay over on YouTube: youtu.be/knoVkVg-8Ds
Dive into SPOA, SPOE, and SPOP, how they fit into the traffic flow, and how CrowdSec collects signals and enforces decisions using HAProxyβs native integrations.
