CrowdSec

New Console Feature Drop: Attack Map is LIVE! 🌍⚡ Get a powerful visual view of your threat landscape: 🔍 Replay attacks from the last 24h or 48h 📊 Volumetric insights over 24h, 48h, 7d, or 30d 🎥 One-click GIF export to share your attack activity instantly See exactly where attacks are coming from, identify top scenarios, and track malicious IPs, all in an interactive map. Check it out: app.crowdsec.net/alerts #cybersecurity #threatintelligence #infosec

@lemondefr leverages CrowdSec to automate firewall updates, block malicious IPs, and defend against phishing, scans, and other threats, while saving valuable time for its IT team. Discover the story behind their security strategy 👉 crowdsec.net/blog/le-monde-… #LeMonde #successstory #cybersecurity

Join us next week for an interactive Community Office Hours! Get an exclusive preview of what’s coming next for the CrowdSec WAF. We’ll unveil upcoming features, including: 🔎 Smarter bot detection ⚙️Easier rule creation via the local MCP 👀 Take a peek at the roadmap, get practical tips, ask your questions live, and see how these innovations can strengthen your security posture. 📅 Don’t miss it, join us here: youtube.com/live/UlAamXEZh… #webinar #community #WAF #MCP #cybersecurity

Kubernetes networking is evolving 🌐 with the rise of the Gateway API, offering more flexible and extensible traffic management. CrowdSec continues to support Ingress-NGINX during its final lifecycle, while helping users migrate to modern ingress controllers like Traefik and HAProxy, or Gateway API integrations, for future-proof security 🔒. Read our latest article for details: crowdsec.net/blog/crowdsec-… #Kubernetes #IngressNGINX #GatewayAPI

🚨 In this week’s threat alert, CrowdSec reports on CVE-2026-23744, a critical RCE in MCPJam Inspector. Exploitation attempts are rising, targeting exposed dev environments. Learn how the vulnerability works and how to secure your systems in our latest article 👉 crowdsec.net/vulntracking-r… #CVE #CVE202623744 #threatalert #RCE #cybersecurity

🚀🎉 Big news: CrowdSec Blocklists are now available on the @awscloud Marketplace! ✔️ Real-time, crowd-powered intelligence ✔️ Ultra-curated blocklists with 0 false positives ✔️ Stop malicious IPs, reduce SOC alerts, and prevent IAM brute force & fraud Learn more: aws.amazon.com/marketplace/pp… #AWSmarketplace #blocklists #cybersecurity

Protéger un serveur Linux avec CrowdSec : le guide pour bien débuter it-connect.fr/comment-proteg…

New CVE? We immediately analyze exploitability, validate impact, and ship patches or virtual protections fast to shrink the exposure window.  Watch the full video to learn more 👉 youtube.com/live/oedE1_ycS… #WAF #virtualpatching #cybersecurity #CVE

Thousands of CVEs. But which ones are actually being exploited right now? Live Exploit Tracker cuts✂️ through the noise by showing vulnerabilities that attackers are actively exploiting in the wild, based on real attacks observed across hundreds of thousands of production systems. With Live Exploit Tracker, you can: • Prioritize remediation based on real-world exploitation • Accelerate mitigation with high-confidence, actionable intelligence • Anticipate emerging CVEs by observing exploit behavior in real time Learn more 👉 crowdsec.net/live-exploit-t…

What if your logs already show signs of a targeted attack, but the pattern is easy to miss? 🔎 Am I Under Attack analyzes alert activity with AI to identify suspicious surges and notify you when your infrastructure may be under threat. 🚨 Detect targeted attacks before they escalate. Read more: crowdsec.net/blog/am-i-unde…  #threatdetection #AIinsecurity #cyberthreats #proactivesecurity #securityalerts #attackprevention

🚨 In this week’s newsletter, we dive into CVE-2025-20281, a critical Cisco Identity Services Engine (ISE) RCE vulnerability, as CrowdSec Threat Intelligence observes a new wave of exploitation attempts. We break down how the vulnerability works, why attackers are now incorporating it into opportunistic exploit kits, and what defenders should do to stay protected. Read the full analysis and protect your systems 👉 crowdsec.net/vulntracking-r…

Check out @hackaday’s latest #FLOSS weekly episode featuring our CEO Philippe Humeau 👇 In this episode, Jonathan Bennett chats with Philippe about CrowdSec and how we created an open source Web Application Firewall that runs as a Multiplayer Firewall. Watch to get all the details: hackaday.com/2026/03/04/flo…

A vulnerability is a weakness. A threat is who can exploit it. Risk is the likelihood × impact. Confusing them leads to bad prioritization and preventable incidents. In our latest article, we break down the vulnerability lifecycle (discovery → disclosure → patching) and what it means for developers and maintainers. Read now 👉 crowdsec.net/blog/vulnerabi… #vulnerability #threat #cybersecurity

The Community Blocklist blocks a lot. But the Threat Forecast Blocklist goes further: 📊 ~50% more attackers blocked 📊 1:40 prevention ratio 📊 Built from your own attack patterns Available for the CrowdSec Console Premium plan, and still one of the most powerful ways to reduce noise before it starts. Learn more 👉 crowdsec.net/blog/threat-fo… #blocklists #cybersecurity

🛑 Stop known attackers before they reach your network. Here’s how to plug🔌  CrowdSec’s IP endpoint into Sophos Firewall and instantly benefit from global threat intelligence. Watch the full video here: youtu.be/lmqzFpHpYyw?si… #firewall #blocklists #ipfeeds #sophos #cybersecurity

🚨 This week’s CrowdSec Threat Alert: CVE-2026-21859, a critical SSRF vulnerability in Mailpit, is being actively exploited to map internal networks and access sensitive infrastructure. See how the exploit works, what targeted reconnaissance reveals, and why exposed dev tools can become high-impact entry points in our latest article 👉 crowdsec.net/vulntracking-r… #CVE #CVE202621859 #threatalert #cybersecurity

Missed our Community Office Hours? No worries, the replay is ready! 🎥 Yesterday, we took a deep dive into Stack Health and shared real-world insights straight from production deployments. Catch the replay here 👉 youtu.be/knoVkVg-8Ds Watch it on your schedule, share it with your team, and let us know what you’d like us to cover next 👇 See you at the next Office Hours!

We’re just 1 hour away from our Community Office Hours!  Join us live here 👉 youtube.com/watch?v=oedE1_… Today, we’re diving into Stack Health, where we’ll cover:  • What real-world deployment data is telling us • The most common issues & misconfigurations we’re seeing • Live troubleshooting examples • A sneak peek at what’s coming in v1.1, including new issue detection and improved guidance If you’re running CrowdSec in production (or planning to), this session will be packed with practical insights you can apply immediately. See you very soon! 🙌

Writing WAF rules shouldn’t feel like decoding ancient YAML scrolls 📜 So we built a Model Context Protocol (MCP) for CrowdSec that lets your favorite LLM generate production-ready WAF rules, with validation and feedback loops built in 🤖 Think “USB port for AI”: connect tools, reduce hallucinations, ship faster. Learn more and get started 👉 crowdsec.net/blog/crowdsec-… #AI #LLM #MCP #YAML #cybersecurity

💭 Did you know? ⟶ CrowdSec’s Live Exploit Tracker monitors 650+ CVEs actively exploited in the wild, more than half of all publicly known exploited vulnerabilities. You can’t patch everything, but you can prioritize what’s actually under attack. 🔥 Learn more about the CrowdSec Live Exploit Tracker: crowdsec.net/live-exploit-t… #liveexploittracker #cve #cybersecurity