AI Security Digest
Aggregated ecosystem risk analysis
Vendor Watchlist
Tracking 0 critical integrations
Threat Stream Feed
Real-time security logs and system alerts
Cloudflare - NRT (Tokyo) on 2026-07-09
Jul 9, 15:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 02:40 UTC Scheduled - We will be performing scheduled maintenance in NRT (Tokyo) datacenter on 2026-07-09 between 15:00 and 23:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location,...
Zoom - Subset of users might have experienced a delay with Zoom Phone Voicemail/Recording/Call Log and Live meeting dashboard in Europe region
Jul 9, 03:58 PDT Monitoring - On July 9, 2026, between 10:25 - 10:40 UTC, a subset of users may have experienced issues with delay with Zoom Phone Voicemail/Recording/Call Log and Live meeting dashboard in Europe region. This incident has been resolved and the affected services have been restored. Our team will continue to monitor the situation closely and keep you informed of any further developments.
MongoDB Atlas - Atlas Data Federation and Online Archive cloud-provider IAM authentication error
Jul 9, 10:57 UTC Identified - We have identified that the issue is caused by a recent configuration change to IAM authentication and are working on a fix. Jul 9, 10:23 UTC Investigating - Users of Atlas Data Federation and Online Archive using cloud-provider IAM authentication may see pipelines fail with an error when querying backing Atlas clusters. Other authentication methods are unaffected. As a temporary workaround, users can use SCRAM authentication.
How to deal with Trivy findings in third party images
We are using Trivy to scan all the images deployed in our clusters. We are also running SonarQube Community. Now Trivy finds 23 vulnerabilities with high severity. I am pretty sure that they are not exploitable and the SonarQube maintainers are looking into it. But how do you all handle this in automatic checks? Are you maintaining Trivy ignore files all by yourself (and keeping them up to date)? ...
Zoom - Zoom Push Notification Service Release: July, 2026 (No Operational Impact)
THIS IS A SCHEDULED EVENT Jul 9, 00:00 PDT - Jul 18, 03:00 PDT Jul 8, 01:43 PDT Scheduled - We will be performing scheduled maintenance to upgrade our Push Notification Service.No operational impact is expected. This maintenance includes the following enhancements and improvements:•Zoom Room status report enhancement.•Fixed an issue where the tracking ID was not being propagated when invoking downstream backend services.All services are expected to operate normally during the maintenance win...
Sumo Logic - Problem with CSE Processing Pipeline in Europe 1 (EU)
Jul 9, 06:54 UTC Investigating - We are currently investigating reports of problems with CSE Processing Pipeline. The symptoms are: latency in processing and displaying security data. We will provide more information soon.
Cloudflare - FRA (Frankfurt) on 2026-07-09
Jul 9, 06:15 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 9, 06:04 UTC Scheduled - We will be performing scheduled maintenance in FRA (Frankfurt) datacenter on 2026-07-09 between 06:15 and 08:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this locat...
Cloudflare - MIA (Miami) on 2026-07-09
Jul 9, 06:01 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 8, 07:24 UTC Scheduled - We will be performing scheduled maintenance in MIA (Miami) datacenter on 2026-07-09 between 06:00 and 11:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location,...
Cloudflare - DFW (Dallas) on 2026-07-09
Jul 9, 06:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 9, 03:56 UTC Scheduled - We will be performing scheduled maintenance in DFW (Dallas) datacenter on 2026-07-09 between 06:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Expensify - Site Issue
Jul 9, 05:18 UTC Update - A fix has been implemented and we are monitoring results. Emails (including login security codes) should now be working again. Please report any issues to Concierge (concierge@expensify.com). Jul 9, 05:18 UTC Monitoring - A fix has been implemented and we are monitoring results. Emails (including login security codes) should now be working again. Please report any issues to Concierge (concierge@expensify.com). Jul 8, 22:19 UTC Update - A fix has been implemented...
Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It
Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly Fire." It works against Anthropic's Claude Code and OpenAI's Codex when either is running in an autonomous mode that approves its own
GitHub - Delays starting Actions runs
Jul 9, 04:51 UTC Update - Approximately 5% of GitHub Actions runs on GitHub-hosted runners are experiencing run start delays exceeding 5 minutes. A small portion of these runs may fail after extended delays. We have identified the cause and are working on a mitigation. Jul 9, 04:34 UTC Investigating - We are investigating reports of degraded performance for Actions
GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents
Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensitive one instead. The affected tools are Amazon Q Developer, Anthropic's Claude Code, Augment, Cursor, Google Antigravity, and Windsurf.
Cloudflare - FRA (Frankfurt) on 2026-07-09
Jul 9, 01:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 19:04 UTC Scheduled - We will be performing scheduled maintenance in FRA (Frankfurt) datacenter on 2026-07-09 between 01:00 and 06:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this locat...
Cloudflare - VIE (Vienna) on 2026-07-09
Jul 9, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 8, 15:24 UTC Scheduled - We will be performing scheduled maintenance in VIE (Vienna) datacenter on 2026-07-09 between 00:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Cloudflare - CDG (Paris) on 2026-07-09
THIS IS A SCHEDULED EVENT Jul 9, 00:00 - 08:00 UTC Jul 6, 00:52 UTC Scheduled - We will be performing scheduled maintenance in CDG (Paris) datacenter on 2026-07-09 between 00:00 and 08:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhe...
DocuSign - Powerforms Intermittently Not Loading (Incident 5345)
Jul 8, 21:47 UTC Resolved - The incident has been resolved. Incident duration and timelines are subject to revision pending the results of any related investigation. Jul 8, 21:46 UTC Investigating - We are actively investigating this issue.
Vercel - Delays Processing Builds
Jul 8, 18:40 UTC Update - We are seeing signs of recovery and the affected build queue has started to drain.Some customers may continue to experience delayed build starts or builds stuck in an initializing state while recovery continues. We will provide additional updates as they become available. Jul 8, 18:05 UTC Investigating - We've identified an issue where some customers may experience delays in builds starting and/or builds stuck in an initializing state. We are currently investigatin...
Supabase - Elevated JWT authorization errors
Jul 8, 18:37 UTC Investigating - We are aware of reports of elevated legacy JWT authorization errors on edge functions in some regions
Cloudflare - Workers Builds Increased Failure Rate
Jul 8, 18:37 UTC Resolved - Cloudflare has identified and mitigated an issue which impacted a small subset of projects running Workers Builds between 2026-07-07 20:10 UTC to 2026-07-08 18:30 UTC.Customers experiencing the issue will have seen their builds fail with the error "A Worker named already exists in your account...".
Cloudflare - Workers Cron Triggers Issues
Jul 8, 18:30 UTC Resolved - Cloudflare has identified and mitigated an issue which impacted Workers cron triggers for some Workers between 2026-07-08 18:23 UTC to 2026-07-08 19:30 UTC.
AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers
Sophos looked at a week of its own endpoint data and found that AI coding agents such as Claude Code, Cursor, and OpenAI Codex are setting off detection rules written to catch human intruders. The agents are not malicious. They just do a lot of things that, to a behavioral engine, look exactly like an attack. Decrypting browser credentials, listing what sits in Windows' credential store,
Cloudflare - KIX (Osaka) on 2026-07-08
Jul 8, 17:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 12:20 UTC Scheduled - We will be performing scheduled maintenance in KIX (Osaka) datacenter on 2026-07-08 between 17:00 and 21:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location,...
Supabase - Project creation delays in AP regions
Jul 8, 16:52 UTC Investigating - We are aware of project creation taking longer than normal in AP regions. A retry should enable completion of creation for those impacted.
Drift Corpus: binary diffs of 240+ 2026 Windows kernel patches
Patch Tuesday confirms a CVE is fixed but not what changed in the binary, which function, which check, or whether it's a real fix or just churn. The Drift Corpus is a diff of 240+ 2026 Windows kernel patches. Per entry: the changed functions with assembly, the bug class and call chain, WinDbg breakpoints to reproduce, and a plain-English root cause. Browse: https://byteray-ai.github.io/drift-corp...
Plaid - Maintenance: Scheduled maintenance - JUL-15: infrastructure upgrades
Status: ScheduledPlaid is planning maintenance from 04:00 - 09:00 UTC on July 15th, 2026. During this window, there may be degradation to the following API endpoints which depend on real-time transactions data. Transactions updates may also be delayed. Transactions - /transactions/sync - /transactions/get - /transactions/refresh - /transactions/recurring/get Investments - /investments/transactions/get Liabilities - All Liabilities product endpoints Assets - /asset_report/create - /asset_repo...
Zoom - Service Degradation Affecting Zoom Healthcare Integration services in US Region
Jul 8, 08:52 PDT Monitoring - The issue affecting users' ability to sync appointments with Zoom Healthcare Integration in US region has been successfully resolved. Our team will continue to monitor the situation closely and keep you informed of any further developments. Jul 8, 08:02 PDT Identified - We have successfully identified the root cause affecting users' ability to sync appointments with Zoom Healthcare Integration in US region.We are working with our vendor to resolve the issue. We...
Cloudflare - Cloudflare Dashboard and Cloudflare API service issues - Turnstile Widgets
Jul 8, 15:00 UTC Resolved - Between the times of 14:40 and 15:00 (UTC) on 2026-07-08 Cloudflare experienced issues with the listing of Turnstile widgets via the Dashboard and API. These requests may have failed and/or 500 errors may have been displayed.
New Ghost Phishing Wave Is Breaking Traditional Email Security
A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser. For security leaders, the risk is clear: traditional URL checks may miss the attack while Microsoft 365 access, sensitive data, and response time
SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users
A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification pages that deceive them into running a malicious command that installs a PowerShell toolkit dubbed
GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures
New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with the same files, author, and date, and a valid signature, GitHub still stamps "Verified." Everything a reviewer would check matches. The commit's hash does not. That matters
GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code
An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by researchers Abhishek Kumar and Carsten Maple. The models they tested through Copilot, Claude from Anthropic, and Gemini from Google, refused
China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware
A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According to findings from Cisco Talos, UAT-7810 is an advanced persistent threat (APT) actor that's responsible for maintaining and proliferating LapDogs, an ORB network that first came to light in June 2025.
Cloudflare - LAX (Los Angeles) on 2026-07-08
Jul 8, 09:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 13:36 UTC Scheduled - We will be performing scheduled maintenance in LAX (Los Angeles) datacenter on 2026-07-08 between 09:00 and 14:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this loc...
Cloudflare - DFW (Dallas) on 2026-07-08
Jul 8, 06:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 10:18 UTC Scheduled - We will be performing scheduled maintenance in DFW (Dallas) datacenter on 2026-07-08 between 06:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities are listed below - CVE-2026-48282 (CVSS score: 10.0) - A path traversal vulnerability in Adobe ColdFusion that could lead to arbitrary code execution in the context of the
Cloudflare - TLL (Tallinn) on 2026-07-08
THIS IS A SCHEDULED EVENT Jul 8, 02:00 - 07:00 UTC Jul 7, 06:38 UTC Scheduled - We will be performing scheduled maintenance in TLL (Tallinn) datacenter on 2026-07-08 between 02:00 and 07:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsew...
Cloudflare - Network Performance Issues in London
Jul 8, 01:56 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 8, 01:56 UTC Investigating - Cloudflare is investigating issues with Network Performance in London. Some customers may experience increased latency or timeouts for the uksouth Azure region.We are working to analyze and mitigate this problem. More updates to follow shortly.
Zoom - Zoom FileServer Release: July, 2026 (No Operational Impact)
Jul 7, 18:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 3, 05:59 PDT Scheduled - We will be performing a scheduled maintenance for a upgrade related to our file services. This update covers multiple file-related components and is aimed at improving overall stability, scalability, and feature support.No operational impact is expected. This maintenance introduces the following new features and improvements:1. Smoother client-sid...
Cloudflare - CDG (Paris) on 2026-07-08
THIS IS A SCHEDULED EVENT Jul 8, 00:00 - 08:00 UTC Jul 5, 23:44 UTC Scheduled - We will be performing scheduled maintenance in CDG (Paris) datacenter on 2026-07-08 between 00:00 and 08:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhe...
Cloudflare - VIE (Vienna) on 2026-07-08
THIS IS A SCHEDULED EVENT Jul 8, 00:00 - 12:00 UTC Jul 7, 11:40 UTC Scheduled - We will be performing scheduled maintenance in VIE (Vienna) datacenter on 2026-07-08 between 00:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewh...
Extract, Knock Offline, and Take Over Bluetooth Devices with Just a Laptop
Most Bluetooth devices are paired and set to non-discoverable after initial setup; since general discovery scans are what most people and OSes disable. The Whisper Pair exploit (CVE-2025-36911) bypasses this by connecting via BLE and writing a forged Fast Pair pairing request (0x00 + random 64-byte public key + nonce) to the key-based pairing characteristic (UUID 1236). It then writes a fake...
DocuSign - Errors accessing the sending web application (Incident 5334)
Jul 7, 20:55 UTC Investigating - A small subset of customers may see errors accessing the sending web application. We are actively investigating the underlying cause.
Asana - Errors loading the Asana web app for some users in US
Jul 7, 18:49 UTC Identified - We are seeing errors for part (about 10%) of users in US for the Asana webapp. We've identified the root cause and are working on identifying a resolution.
Zoom - Zoom Chat Update
Jul 7, 10:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 7, 09:48 PDT Scheduled - We will be providing an update to Zoom Chat Backend Service. There will be no operational impact. All services will be available during this scheduled update (ZR status might be displayed as offline in the service logs but no operational impact).
Rippling - Site performance is degraded
Jul 7, 16:51 UTC Investigating - We are investigating degraded performance of the Rippling app loading. We will share an update in the next 10 minutes.
Monday.com - Investigating issues with platform latency/slowness.
Jul 7, 15:45 UTC Investigating - We are currently experiencing issues related to platform latency/slowness. Our dedicated team is working to resolve this as quickly as possible
Cloudflare - Cloudflare Registrar operations issues
Jul 7, 15:41 UTC Investigating - Cloudflare is aware of and investigating an issue with Cloudflare Registrar that may prevent customers from registering, renewing, updating and transferring domains.Further detail will be provided as more information becomes available.
DocuSign - Intermittent Issues With Delivery of e-mail Notifications (Incident 5326)
Jul 7, 15:31 UTC Identified - A subset of customers may experience intermittent failures of email notifications upon sending of envelopes. To mitigate this customers can log into their DocuSign account and access the envelope directly. Engineering teams have identified the issue and are currently working to resolve this issue.
GitLost: a public GitHub issue can steer an org's Agentic Workflow into leaking private repo contents, and a one-word prefix ("Additionally") bypassed the threat-detection guardrail
Noma Security published a technique they call GitLost against GitHub Agentic Workflows (the plain-English-Markdown agent feature GitHub put into public preview in February, runnable on Copilot, Claude, Gemini, or Codex). Worth reading because it is a clean demonstration of why "filter the injection" does not hold as a defense. The setup. Workflows are read-only by default, but an org can hand one...
DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts
A Microsoft 365 device code phishing campaign has been observed leveraging collaboration-themed lures to take control of victim accounts between the last week of June 2026 and into early July, per findings from ZeroBEC. "The campaign did not depend on a fake Microsoft password page. It used a malicious collaboration-style lure to push users into the legitimate Microsoft device login experience,
GitHub - Actions and Codespaces APIs experiencing partial failures
Jul 7, 14:47 UTC Update - Customers accessing the Actions and Codespaces REST APIs may see 500 class errors a percentage of the time. Retries may be successful.Actions runs and codespaces in progress are continuing successfully.We are continuing to investigate the source of these errors. Jul 7, 14:32 UTC Update - Codespaces is experiencing degraded availability. We are continuing to investigate. Jul 7, 14:14 UTC Update - Customers accessing the Actions and Codespaces REST APIs may see ...
Box - [Medium] Issues with Search service, Box Sign Templates and Metadata queries
Jul 7, 07:42 PDT Update - Our team is investigating an issue with the Search service, Box Sign Templates and Metadata queries. Users may see errors or slowness when attempting to search items in Box and / or using Metadata queries. We will provide additional information as it becomes available. Jul 7, 07:11 PDT Investigating - Our team is investigating an issue with the Search service and Metadata queries. Users may see errors or slowness when attempting to search items in Box and / or usin...
Wix - RESOLVED: Issues Accessing Editor/Studio
Jul 7, 14:35 UTC Resolved - This incident has been resolved. Jul 7, 14:29 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 7, 14:26 UTC Identified - The issue has been identified and a fix is being implemented. Jul 7, 14:25 UTC Investigating - We are currently investigating this issue.
Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data
A public issue can trick GitHub Agentic Workflows into leaking the contents of an organization's private repositories, researchers at Noma Security have shown. The attacker needs only to open a normal-looking issue on a public repository, with no stolen credentials and no access to the organization. If that organization has given the agent read access across its repositories, private ones
Cloudflare - DNS Zone Transfer Issues
Jul 7, 14:00 UTC Resolved - Secondary DNS zone transfers (AXFR/IXFR) using legacy IP addresses may have experienced intermittent failures between 14:50 and 16:10 UTC. The underlying issue has been corrected and all zone transfers are now operating normally.
Xero - EMEA : Some open banking customers unable to create or manually renew bank feeds
Jul 7, 13:59 UTC Identified - We are aware that one of our third party providers is currently experiencing an outage which is impacting UK, Ireland and some EU open banking customers from creating or manually renewing their bank feeds. Customers may also experience delays on any imported transactions. This is our top priority and we will update you as soon as we can.Status Last Reviewed: 13:58 UTC
Siemens SINEC OS
View CSAF Summary SINEC OS before V4.0 contains multiple vulnerabilities. Siemens has released a new version for RUGGEDCOM RST2428P and recommends to update to the latest version. The following versions of Siemens SINEC OS are affected: RUGGEDCOM RST2428P (6GK6242-6PA00) vers:intdot/<4.0 CVSS Vendor Equipment Vulnerabilities v3 9.8 Siemens Siemens SINEC OS Improper Restriction of Operat...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-48282 Adobe ColdFusion Path Traversal Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 26-04: Prioritizing Security Up...
Zoom - Service Degradation Affecting Zoom Phone and Zoom Contact Center Inbound calls in India
Jul 7, 03:53 PDT Identified - We have identified the issue with our underlying carrier affecting a subset of Airtel subscribers, which is impacting inbound call connectivity to Zoom India phone numbers for Zoom Phone and Zoom Contact Center. Outbound calls continue to function normally.We are actively working with our carrier partner to resolve the issue.We will share updates as soon as they become available. Jul 7, 03:15 PDT Investigating - We are currently investigating a service degradat...
DigitalOcean - NYC2 Network Maintenance
Jul 7, 10:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 4, 09:05 UTC Scheduled - Start: 2026-07-07 10:30 UTCEnd: 2026-07-07 15:30 UTCDuring the above maintenance window, our Networking Engineering team will be making changes to the core networking infrastructure on Baremetal GPU to enhance performance and scalability in the NYC2 region.Expected impact:We do not expect any customer impact during this maintenance. However, if an...
Cloudflare - New members invitations to accounts not being sent
Jul 7, 10:22 UTC Investigating - Cloudflare is investigating issues with invites for new members of accounts that are not being sent to the invitees, impacting their ability to join organizations.We are working to mitigate this problem. More updates to follow shortly.
Sentry - Incoherent number of processed logs
Jul 7, 08:49 UTC Investigating - We are currently investigating reports of inconsistent reported number of processed logs in Sentry for the last day
Wix - RESOLVED: Issue affecting multiple services
Jul 7, 08:28 UTC Resolved - This incident has been resolved. Jul 7, 08:20 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 7, 08:12 UTC Investigating - We are investigating issues with multiple services.
Zoom - Service Degradation Affecting Live Streaming in Singapore Region.
Jul 7, 00:41 PDT Identified - We have successfully identified the root cause affecting Live Streaming in Singapore Region. Our team is actively working on a resolution, and we will keep you informed with timely updates as progress is made. Thank you for your patience.
Some advice on how to improve my penetration testing workflow.
Hi everyone some advice on how to improve my penetration testing workflow. I'm feeling a bit stuck lately and would really appreciate some advice on how to improve my penetration testing workflow. A little about me: I've been working in cybersecurity for about three years. I started on a team that deployed security solutions such as SIEM, SOAR, and EDR, which was how I first got into security. Lat...
Cloudflare - VIE (Vienna) on 2026-07-07
Jul 7, 03:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 6, 14:36 UTC Scheduled - We will be performing scheduled maintenance in VIE (Vienna) datacenter on 2026-07-07 between 03:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Cloudflare - CDG (Paris) on 2026-07-07
Jul 7, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 5, 23:44 UTC Scheduled - We will be performing scheduled maintenance in CDG (Paris) datacenter on 2026-07-07 between 00:00 and 08:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location,...
[CISA KEV] CVE-2026-48282: Adobe ColdFusion Path Traversal Vulnerability
Product: ColdFusion by Adobe Description: Adobe ColdFusion contains a path traversal vulnerability that could lead to arbitrary code execution in the context of the current user. Required Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
Zoom - Service Degradation Affecting Real Time Media Streams (RTMS)
Jul 6, 16:42 PDT Identified - We have identified a service degradation with Real Time Media Streams. Our team is actively working to resolve the issue. We will provide an update as soon as more information becomes available. We appreciate your patience as we work to resolve this issue.
Cloudflare - Durable Objects Increased Error Rate in ENAM
Jul 6, 22:56 UTC Identified - Cloudflare has identified issue causing an increase of errors for Durable Objects and downstream services in Eastern North America. We are working to analyse and mitigate this problem. More updates to follow shortly.
Sentry - DE items ingestion delayed
Jul 6, 21:56 UTC Monitoring - API and dashboards for traces, logs, spans should be restored.Ingestion is still behind but is expected to catch up in the next few hours
Expensify - Degraded performance
Jul 6, 17:05 UTC Resolved - This incident has been resolved. Jul 6, 16:24 UTC Monitoring - A fix has been implemented and we are monitoring the results Jul 6, 15:47 UTC Update - We are continuing to investigate this issue. Jul 6, 15:47 UTC Investigating - We’re aware of site instability issues and are working to resolve them as soon as possible. We apologize for the inconvenience.
Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure
Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig. The vulnerability in question is CVE-2026-20896 (CVSS score: 9.8), a vulnerability that stems from the DevOps platform trusting the "X-WEBAUTH-USER" header from any source IP address, effectively allowing an unauthenticated internet client to get elevated
Cloudflare - SYD (Sydney) on 2026-07-06
THIS IS A SCHEDULED EVENT Jul 6, 16:00 - 21:00 UTC Jul 2, 03:34 UTC Scheduled - We will be performing scheduled maintenance in SYD (Sydney) datacenter on 2026-07-06 between 16:00 and 21:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewh...
AWS - Service is operating normally: [RESOLVED] Increased Launch Template API Error Rates
Between 2:56 AM and 6:54 AM PDT, we experienced increased error rates when calling EC2 Launch Template APIs in the US-EAST-1 Region. During this time, affected customers may have experienced errors when creating, modifying, or describing Launch Templates. Other AWS services that rely on Launch Templates were also impacted. Amazon EC2 instances and Amazon EKS workloads already running on provisioned nodes continued to operate normally. Cluster modification operations, and Managed Node Group creat...
Supabase - Endpoints in us-east-1 returning 500 Internal server error
Jul 6, 14:47 UTC Update - The 500 errors are limited to us-east-1, we are actively exploring causes. Jul 6, 14:45 UTC Investigating - Multiple endpoints are returning 500 Internal server errors across our platform. We are investigating what has caused these errors.
AWS - Service impact: Increased Launch Template API Error Rates
We are seeing initial signs of recovery and continue to work toward full recovery.
Monday.com - Investigating connectivity issues across accounts and devices
Jul 6, 13:42 UTC Monitoring - A fix has been implemented and we are monitoring the results. You may encounter delays in automations in the meantime. Jul 6, 13:24 UTC Investigating - We are currently investigating reports of connectivity issues across the platform. Our team is working to resolve this promptly.
AWS - Service impact: Increased Launch Template API Error Rates
Starting at 2:56 AM PDT, we began experiencing increased error rates when calling EC2 Launch Template APIs in the US-EAST-1 Region. Our engineers have been engaged and are actively working to mitigate the impact. Additionally, Amazon Elastic Kubernetes (EKS) customers may experience errors when creating or updating clusters, or when launching and scaling nodes via Managed Node Groups, EKS Auto Mode, or Karpenter; this issue does not impact existing clusters and nodes. We have identified the root...
Heroku - Heroku Service Disruption
Engineers have identified an issue with an upstream service provider that impacts customers with apps in Cedar Private Spaces. Customers may experience failures with starting and scaling dynos of Cedar Private Spaces apps in Virginia. Engineers are working with the upstream provider to expedite a resolution.
AWS - Service impact: Increased Launch Template API Error Rates
We are investigating increased error rates when calling EC2 Launch Template APIs in US-EAST-1 Region. During this time, affected customers may experience errors when creating, modifying, or referencing launch templates. Other AWS services that rely on launch templates may also be impacted. We will provide another update by 6:30 AM PDT or sooner, if we have additional information to share.
Confluence - Reliability issues with Jira and Confluence
Jul 6, 09:23 UTC Investigating - We are investigating issues affecting your services. We are actively working to identify the cause and resolve the issue. We will provide further updates within one hour.
New Relic - Delay of Entity Relationship Data
Jul 6, 08:23 UTC Resolved - Between 07:20 and 08:12 UTC on July 6th, we experienced an issue where some customers in the EU region may have experienced a delay of entity relationships appearing and refreshing in the New Relic platform. The issue is now resolved and the impacted services have returned to normal service.
Cloudflare - Zero Trust Dashboard onboarding issues
Jul 6, 08:12 UTC Investigating - Cloudflare is aware of and investigating an issue where some users are currently unable to complete onboarding into Cloudflare Zero Trust or manage Access applications. We are actively working on a resolution.
Cloudflare - GRU (São Paulo) on 2026-07-06
THIS IS A SCHEDULED EVENT Jul 6, 04:00 - 13:00 UTC Jul 3, 09:32 UTC Scheduled - We will be performing scheduled maintenance in GRU (São Paulo) datacenter on 2026-07-06 between 04:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over els...
Cloudflare - VIE (Vienna) on 2026-07-06
Jul 6, 02:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 6, 02:14 UTC Scheduled - We will be performing scheduled maintenance in VIE (Vienna) datacenter on 2026-07-06 between 02:30 and 07:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Sentry - Spans, logs and metrics ingestion stopped
Jul 6, 00:44 UTC Monitoring - The issue was fixed and we are now monitoring the fix Jul 6, 00:35 UTC Investigating - We are investigating consumers for spans, logs and metrics are not ingested
Cloudflare - CDG (Paris) on 2026-07-05
THIS IS A SCHEDULED EVENT Jul 5, 23:00 UTC - Jul 6, 06:30 UTC Jul 1, 19:48 UTC Scheduled - We will be performing scheduled maintenance in CDG (Paris) datacenter between 2026-07-05 23:00 and 2026-07-06 06:30 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic...
DocuSign - Intermittent Errors and Delays (Incident 5312)
Jul 5, 22:50 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 5, 22:35 UTC Investigating - We are actively investigating this issue.
Releasing my Windows 10/11 Hardening app, free, of course, else it wouldn't be here.
I used to have a hardening script for years, but now AI made it easy to convert my hardening script into an app. It's beyond just a few settings - all of the ones in the recommended profile are battle-tested (I used to work in Microsoft's security consulting division in the Middle East). Feedback is welcome, I promise to take into account and fix all issues reported here. Here's the official descr...
Cloudflare - Elevated number of errors in Munich, Germany
Jul 5, 05:35 UTC Resolved - Between 05:07-05:19 UTC customers reaching Munich may have experienced an elevated number of 4XX or 5XX errors. The issue is now resolved
DigitalOcean - Limited access to Deepseek V4 Pro model
Jul 4, 22:13 UTC Investigating - Our Engineering team is investigating reports of an incident affecting the Deepseek V4 Pro model in Serverless Inference and Agent Platform. Users may experience errors when attempting to use this model, specifically receiving error 429 messages. We apologize for the inconvenience and are working to resolve the issue as soon as possible. We will provide an update once we have more information.
Cloudflare - Cloudflare Vectorize Issues
Jul 4, 21:25 UTC Investigating - Cloudflare is investigating issues with the Vectorize service. Customers may receive an "Internal Server Error" (HTTP 500) response when sending requests to a Vectorize index that has been deleted, instead of the expected "Not Found" (HTTP 404) response. Creating, querying, and managing active indexes are not affected, and no other Cloudflare services are impacted. We are working to understand the full impact and mitigate this problem. More updates to follow sh...
DigitalOcean - Droplet Actions in NYC3
Jul 4, 14:42 UTC Monitoring - Our Engineering team has implemented a fix to address the issue affecting Droplets in the NYC3 region. The issue, which began at 12:38 UTC, caused disruptions to customers attempting to perform actions on their Droplets in the NYC3 region.During this time, customers may also have experienced errors when trying to create Droplets in this region.We are actively monitoring the situation to ensure the fix remains effective and will provide another update once the issu...
Cloudflare - New users unable to deploy Workers
Jul 4, 14:38 UTC Identified - Cloudflare has identified an issue where new users cannot deploy Workers in the dashboard. We are working to mitigate the impact and will update shortly.
Cloudflare - Free WARP and WARP+ new registrations
Jul 3, 21:57 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 3, 21:46 UTC Identified - The issue has been identified and a fix is being implemented. Jul 3, 21:18 UTC Investigating - Cloudflare is investigating issues with Cloudflare Free WARP and Cloudflare WARP+. Cloudflare Free WARP and Cloudflare WARP+ users may experience new registration issues. Cloudflare One Client and Zero Trust is not affected.
New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access take full control of a machine as root. It affects Linux desktops, servers, and Android, and a fix is out. Bad Epoll sits in the same small stretch of kernel code where Anthropic's most powerful AI model, Mythos, recently found a different bug. The AI caught one flaw and missed
Cloudflare - Loadbalancing and Standalone Healthcheck Services for FedRAMP customers are degraded
Jul 3, 18:27 UTC Investigating - FedRAMP customers may experience delays in receiving notification emails with health status updates for their origin servers.
Cloudflare - Resolution Issues for .al Domains
Jul 3, 16:48 UTC Identified - We are observing issues with authoritative resolution for the .al TLD because of DNSSEC issues at the TLD.