AI Security Digest
Aggregated ecosystem risk analysis
Vendor Watchlist
Tracking 0 critical integrations
Threat Stream Feed
Real-time security logs and system alerts
Cloudflare - PDX (Portland) on 2026-07-15
Jul 15, 18:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 18:14 UTC Scheduled - We will be performing scheduled maintenance in PDX (Portland) datacenter between 2026-07-15 18:30 and 2026-07-16 01:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in thi...
SendGrid - Delayed Processing for SendGrid Account Actions
Jul 15, 11:11 PDT Investigating - Starting around 10:09 AM PDT on July 15, 2026, our engineers began investigating an issue with account actions. Users may experience delays with account management tasks, such as password resets. This does not impact mail send. We will provide another update in 1 hour or as soon as more information becomes available.
File-Binding, Process-Binding, and Silo-Binding - new process impersonation techniques for EDR evasion
TL;DR: One documented Windows feature, the Bind Filter, gives an attacker who already holds local administrator rights three ways to make one file look like another to every path-based defense on the box. No vulnerable driver, no exploit. Bitdefender Labs named and documented all three: File-Binding, Process-Binding, and Silo-Binding: - File-Binding hijacks what a target loads or reads. Shadow the...
Cloudflare - Elevated errors in ENAM region
Jul 15, 15:45 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 15:28 UTC Identified - The issue has been identified and a fix is being implemented. Jul 15, 15:22 UTC Investigating - Customers may experience elevated error rates in ENAM region
Cloudflare - Network Performance Issues in AMS
Jul 15, 14:53 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 14:19 UTC Identified - The issue has been identified and a fix is being implemented. Jul 15, 13:39 UTC Investigating - Cloudflare is investigating issues with network performance in Amsterdam. We are working to analyse and mitigate this problem. More updates to follow shortly.
KQL Queries for new Chaotic Eclipse Zero day 'Legacy Hive'
Literally after July 2026 Patch Tuesday, Chaotic Eclipse dropped a functional zero-day PoC called LegacyHive an arbitrary hive load Elevation of Privilege (EoP) vulnerability targeting the Windows User Profile Service (ProfSvc). Because the exploit works on fully patched systems by mounting targeted user hives into the current user's classes root, I've put together two KQL hunting queries for this...
Firefox, Chrome, Adobe, and VMware Updates Fix Multiple Critical Security Flaws
Mozilla has released updates to address two critical flaws in Firefox for which it warned that exploit code has been published. The vulnerabilities are listed below - CVE-2026-15718, an invalid pointer in the JavaScript: WebAssembly component CVE-2026-15719, a site isolation in the DOM: Navigation component "We are aware that exploit code for this is public, however we are not aware of
Cloudflare - Network Performance issues - Increased HTTP 502 Errors in HKG
Jul 15, 11:00 UTC Monitoring - Cloudflare is investigating an increased level of HTTP 502 errors originating from the Hong Kong datacenter. We are working to analyse and mitigate this problem. More updates to follow shortly.
Cloudflare - BOG (Bogotá) on 2026-07-15
Jul 15, 11:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 10:08 UTC Scheduled - We will be performing scheduled maintenance in BOG (Bogotá) datacenter on 2026-07-15 between 11:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Cloudflare - ATL (Atlanta) on 2026-07-15
THIS IS A SCHEDULED EVENT Jul 15, 06:00 - 13:00 UTC Jul 13, 20:22 UTC Scheduled - We will be performing scheduled maintenance in ATL (Atlanta) datacenter on 2026-07-15 between 06:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over else...
FortiSandbox CVE-2026-59835 exposes sandbox VNC sessions without authentication
Fortinet has disclosed CVE-2026-59835, an unauthenticated VNC exposure affecting FortiSandbox 5.0.0 - 5.0.2 and 4.4.3 - 4.4.8. The flaw can allow remote attackers to access the VNC server of virtual machines performing malware analysis via network requests, potentially exposing live sandbox sessions. Patches have been released by Fortinet on 14 July, and organizations using affected versions...
GCP - RESOLVED: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 and ended at 2026-07-14 21:46 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers may have experienced zonal outages impacting network connectivity across multiple regions. Description We experienced an inter-site communication issue with Google Cloud VMware Engine (GCVE) Stretched Cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We identified the affected customers, and have worked with them to fully m...
Box - [Medium] Issues with Box Relay
Jul 14, 21:50 PDT Identified - Our team has identified the underlying cause of this issue and is working to take remediating steps. We will provide additional updates as they become available. Jul 14, 21:14 PDT Investigating - We are investigating an ongoing issue affecting Box Relay. We will provide additional information as it becomes available.
Cloudflare - YYZ (Toronto) on 2026-07-15
THIS IS A SCHEDULED EVENT Jul 15, 04:00 - 10:00 UTC Jul 14, 00:03 UTC Update - We will be performing scheduled maintenance in YYZ (Toronto) datacenter on 2026-07-15 between 04:00 and 10:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhe...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Expensify - Problems uploading receipts
Jul 15, 02:55 UTC Resolved - This incident has been resolved. Jul 15, 02:43 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 02:36 UTC Update - We are continuing to work on a fix for this issue. Jul 15, 02:35 UTC Identified - The issue has been identified and a fix is being implemented.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Supabase - Errors configuring authentication providers
Jul 15, 00:50 UTC Resolved - This issue has been resolved. Jul 15, 00:34 UTC Monitoring - A fix has been deployed for the issue that affects configuring Authentication Providers. We are monitoring the results to confirm the issue has been fully resolved. Jul 15, 00:25 UTC Identified - We have identified the issue and are actively working on a fix. We will share another update as soon as we have more information. Jul 15, 00:04 UTC Investigating - We are currently investigating an issue aff...
Elastic Cloud - Cloud Console Deployment Errors
Jul 15, 00:31 UTC Monitoring - The ability to manage Elastic Cloud Hosted deployments via the Cloud Console has been restored Jul 15, 00:15 UTC Investigating - We are investigating errors with our cloud console affecting access to create, update, delete and view Elastic Cloud Hosted deployments. Our team is actively investigating the cause so that they can mitigate and restore the service.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Cloudflare - LHR (London) on 2026-07-15
Jul 15, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 15:17 UTC Scheduled - We will be performing scheduled maintenance in LHR (London) datacenter between 2026-07-15 00:00 and 2026-07-16 16:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Cloudflare - LHR (London) on 2026-07-14
Jul 14, 23:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 13:49 UTC Scheduled - We will be performing scheduled maintenance in LHR (London) datacenter between 2026-07-14 23:00 and 2026-07-15 07:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
DocuSign - Some Document Generation customers are being redirected to the CLM home page (Incident 5384)
Jul 14, 20:48 UTC Investigating - We are actively investigating this issue.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an issue with Google Cloud VMware Engine (GCVE) beginning Tuesday, 2026-07-14 at 10:00 PDT. We are continuing to investigate and mitigate the issue. We believe this disruption is isolated to network connectivity issues for stretch clusters, while S...
GitHub - Incident with Webhooks
Jul 14, 17:55 UTC Monitoring - The degradation affecting Webhooks has been mitigated. We are monitoring to ensure stability. Jul 14, 17:55 UTC Update - Between 15:17 and 15:27 UTC, an ongoing deployment had an unintended side effect where webhook delivery states were not persisted in all cases, even when deliveries were accepted and processed. Customers may notice missing webhook deliveries in the UI, and these deliveries will not be retryable.Impact resolved automatically once the deployment...
SendGrid - Twilio SendGrid Email Delays
Jul 14, 10:50 PDT Resolved - Our engineers have investigated and resolved the issues with email delays that involved a certain subset of users. From 10:20 AM PST to 10:25 AM PST customers may have experienced delays with email deliverability for a certain subset of users. This would have impacted Email API and Marketing mail sending. There was no data loss due to this incident. The issue has been resolved and all impacted services are operating normally.
DocuSign - Some customers (including Notary customers) may not be able to authenticate via LexisNexis' Knowledge-Based Authentication, leading to failure in signing envelopes. (Incident 5383)
Jul 14, 17:44 UTC Update - LexisNexis is continuing to investigate the issue. Jul 14, 17:09 UTC Investigating - LexisNexis has been made aware of the issue and are currently investigating.
Researchers Say Claude for Chrome Flaw Lets Rogue Extensions Trigger Gmail Reads
Any other browser extension that can run a script on claude.ai can still trigger Claude for Chrome tasks aimed at your Gmail, your latest Google Doc and its comments, and your Calendar. Both this and ClaudeBleed need a rogue extension that can already run a script on claude.ai; the difference is scope. Anthropic restricted the arbitrary-prompt path in May as part of its response to the
HubSpot - Performance Degradation (Latin America Region)
Jul 14, 12:42 EDT Resolved - We have resolved a performance issue that was causing elevated latency for some users in Latin American regions between July 3rd and July 14th, 2026.Our infrastructure team identified the root cause and the network routing configuration has been corrected. Traffic has been restored to the optimal path and performance has returned to expected levels.We sincerely apologize for the inconvenience and thank you for your patience.
HubSpot - Content previews are unavailable for some customers in North America
Jul 14, 12:31 EDT Identified - Content previews are not loading for some customers in North America. This issue is limited to customers with certain internet providers. We are working with those third-party providers to fix the issue.As a workaround, we recommend:- Using a different Wi-Fi or internet connection (e.g. mobile hotspot)- Checking your internet service provider security settings or contacting your internet service provider to unblock hubspotpreview-na2.comThe information on this pag...
Cloudflare - Elevated number of 502 errors for CDN/Cache in SIN
Jul 14, 16:00 UTC Resolved - Between 16:52-17:10 UTC today, customers would have experienced an elevated number of 502 errors from our CDN/Cache and Durable Objects in SIN.
Cloudflare - Elevated R2 errors in WEUR region
Jul 14, 15:38 UTC Identified - The issue has been identified and a fix is being implemented. Jul 14, 15:23 UTC Investigating - Customers may experience elevated error rates in WEUR region
Sentry - Error ingestion degraded in DE region
Jul 14, 14:44 UTC Investigating - We are currently investigating the issue.
Cloudflare - Gateway List updates using CSV not applied
Jul 14, 11:55 UTC Identified - Cloudflare is aware of and investigating an issue where changes applied via CSV to Gateway Lists are not being applied. More updates to follow shortly.
GitHub - Disruption with some GitHub services
Jul 14, 08:22 UTC Update - Codespaces is experiencing degraded performance. We are continuing to investigate. Jul 14, 08:21 UTC Investigating - We are investigating reports of impacted performance for some GitHub services.
Cloudflare - MCI (Kansas City) on 2026-07-14
Jul 14, 07:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 13, 13:22 UTC Scheduled - We will be performing scheduled maintenance in MCI (Kansas City) datacenter on 2026-07-14 between 07:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this loc...
Xero - Global: Invoicing - Some customers are experiencing errors or slowness when accessing Invoicing in Xero
Jul 14, 06:43 UTC Resolved - Our team has resolved the issue impacting some customers experiencing slowness or errors when accessing invoicing in Xero. We apologise for any inconvenience this has caused. Our technical team identified this was caused a momentary period of issues with network connectivity, and our team has restored service. Jul 14, 04:57 UTC Investigating - We are aware of some customers experiencing slowness or receiving errors when accessing Invoicing in Xero. Our team is inv...
Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three Paths
Attackers whose methods line up with the data-extortion group ShinyHunters have spent the past year walking into corporate Salesforce environments without exploiting a single flaw in the platform. The way in has been the trust the organization had already extended, usually through the OAuth connections that tie Salesforce to the apps and third-party vendors around it. In
Cloudflare - Network Performance Issues in Haikou, China (HAK)
Jul 14, 06:00 UTC Resolved - Earlier today Cloudflare experienced network degradation in Haikou, China that affected some users. The period of impact was roughly between 14th July 2026, 05:45 - 06:07 UTC. Those issues have been resolved.
Cloudflare - IAD (Ashburn) on 2026-07-14
THIS IS A SCHEDULED EVENT Jul 14, 06:00 - 12:00 UTC Jul 13, 10:26 UTC Scheduled - We will be performing scheduled maintenance in IAD (Ashburn) datacenter on 2026-07-14 between 06:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over else...
Sumo Logic - Problem with Metrics Searches in North America 1 (US1)
Jul 14, 05:35 UTC Resolved - We are no longer seeing issues with Metrics Searches and normal operation has been restored at this time. Jul 14, 05:32 UTC Monitoring - We have implemented a fix for the issue affecting Metrics Searches. The symptoms are: latency in processing and displaying metrics data. We are currently monitoring the results. Jul 14, 03:19 UTC Investigating - We are currently investigating reports of problems with Metrics Searches. Users relying on metrics queries may see e...
Cloudflare - BCN (Barcelona) on 2026-07-14
Jul 14, 04:45 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 04:35 UTC Update - We will be performing scheduled maintenance in BCN (Barcelona) datacenter between 2026-07-14 04:45 and 2026-07-15 21:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
Cloudflare - Elevated errors in item PUT requests to AI Search
Jul 14, 04:01 UTC Investigating - Cloudflare is observing issues with Cloudflare AI Search service.We are currently working on a resolution. More updates to follow shortly.
Cloudflare - Elevated R2 errors in EU region
Jul 14, 03:46 UTC Investigating - Cloudflare is observing issues with Cloudflare R2 service.We are currently working on a resolution. More updates to follow shortly.
Supabase - Scheduled Platform Maintenance July 14th, 2026
THIS IS A SCHEDULED EVENT Jul 14, 03:00 - 04:00 UTC Jul 1, 17:06 UTC Scheduled - We will be carrying out a scheduled maintenance window to perform internal platform improvements and upgrades. Maintenance Window: - Start time: 03:00 UTC on July 14, 2026 - End time: 04:00 UTC on July 14, 2026Impact: - Various platform operations will be delayed during this window- These may include project creation and initial configuration/setup- All affected operations will be rescheduled at the end of the win...
GHSA-jr9p-4h4j-6c58: Docker Vulnerability
Kimai: Default APP_SECRET in Docker Image Enables Cookie Forgery and Account Takeover
Cloudflare - LHR (London) on 2026-07-13
THIS IS A SCHEDULED EVENT Jul 13, 23:00 UTC - Jul 14, 06:00 UTC Jul 13, 14:48 UTC Scheduled - We will be performing scheduled maintenance in LHR (London) datacenter between 2026-07-13 23:00 and 2026-07-14 06:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traf...
Open to New Opportunities | Senior DFIR | Incident Response | Digital Forensics | Cyber Investigations | 7+ Years
Hello Cybersecurity Community, I hope you're all doing well. I'm currently exploring new opportunities with global organizations for roles in Digital Forensics, Incident Response (DFIR), Cyber Investigations, Insider Threat, Security Operations (SOC), Threat Hunting, and Incident Management. I'm open to remote, hybrid, or on-site opportunities across India, as well as fully remote international ro...
DocuSign - Some customers may not able to open any CLM documents (Incident 5375)
Jul 13, 19:55 UTC Identified - We have identified the issue and a fix is being implemented.
DigitalOcean - Serverless Inference - Gemma4 Latency Issues Causing Timeouts & Slow Responses
Jul 13, 19:04 UTC Identified - We are currently experiencing an issue where customers using the Gemma 4 model on our Serverless Inference and Dedicated Inference platforms may experience severe latency or request timeouts.Our engineering team has identified a backend configuration issue as the root cause, which is temporarily degrading performance. We are actively working on a fix to restore normal response times and will provide another update as soon as the mitigation is in place
1Password - Degraded user-related operations for individual and family accounts
Jul 13, 14:59 EDT Investigating - Our engineering team is investigating an issue causing degraded user-related operations for individual and family accounts. Users are unable to confirm or delete users or create and delete service accounts. Users are also unable to load the Integrations page.
Lessons Learned from CISA’s Recent GitHub Leak
  submitted by   /u/rkhunter_ [link]   [comments]
Cloudflare - Incorrect zone limits impacting some customers
Jul 13, 16:52 UTC Resolved - This incident has been resolved. Jul 13, 16:36 UTC Investigating - Some customers may see "You have exceeded the limit for adding zones" messages when there are within the limits. A fix has been identified and is in progress
SendGrid - Delays with SendGrid Account Actions and Password Resets
Jul 13, 09:36 PDT Monitoring - Our engineers have implemented a fix and are monitoring system performance. Account actions, such as password resets, are beginning to process as the system recovers and clears any remaining delays. As a reminder, this issue continues to have no impact on mail send. We will provide another update in 1 hour or as soon as more information becomes available. Jul 13, 09:23 PDT Identified - Our engineers have identified the issue and are working toward a fix. Account...
Lessons Learned from CISA’s Recent GitHub Leak
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials -- including AWS Govcloud keys -- in a public GitHub repository for almost six months before being notified by KrebsOnSecurity. Experts say the gaps identified in the agency's initial response provide important lessons that all secur...
Monday.com - Identified issues with Platform Latency
Jul 13, 14:39 UTC Investigating - We are currently experiencing platform latency issues affecting some services, including Docs, My Work, Templates, and Campaigns. Our team is actively investigating the issue and working to restore full service as quickly as possible. We appreciate your patience and understanding. Jul 13, 14:37 UTC Identified - Our team has identified the root cause of the issue and is working to resume regular service usage. We will continue to provide updates on their progr...
1Password - Password Manager Update Server Outage
Jul 13, 10:30 EDT Resolved - A fix for this issue has been implemented, and our teams are monitoring. During the outage, GitHub Actions might have failed to pull the latest CLI version, causing the pipeline to fail.
GitHub - Actions runs are experiencing failures to start
Jul 13, 13:53 UTC Resolved - This incident has been resolved. Thank you for your patience and understanding as we addressed this issue. A detailed root cause analysis will be shared as soon as it is available. Jul 13, 13:39 UTC Monitoring - The degradation affecting Actions and Pages has been mitigated. We are monitoring to ensure stability. Jul 13, 13:32 UTC Update - Pages is experiencing degraded performance. We are continuing to investigate. Jul 13, 13:32 UTC Investigating - We are inv...
Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft
A new phishing-as-a-service (PhaaS) operation called Forg365 is using a combination of device code phishing, adversary-in-the-middle (AitM) tactics, antibot evasion, artificial intelligence (AI)-assisted lure creation, and post-compromise mailbox operations targeting Microsoft 365 accounts. Distributed via Telegram and costing $400 a month (or $3,800 per year), attack chains leverage phishing
Elastic Cloud - Elastic Cloud authentication issues using Microsoft login credentials
Jul 13, 12:19 UTC Resolved - This incident has been resolved. Jul 13, 12:15 UTC Investigating - We are investigating a problem that prevents customers from authenticating against Elastic Cloud using their Microsoft login credentials
Sentry - Ingestion delays in US
Jul 13, 11:51 UTC Investigating - We are investigating ingestion delays.
Cloudflare - ACC (Accra) on 2026-07-13
THIS IS A SCHEDULED EVENT Jul 13, 11:00 UTC - Jul 15, 16:00 UTC Jul 13, 10:14 UTC Scheduled - We will be performing scheduled maintenance in ACC (Accra) datacenter between 2026-07-13 11:00 and 2026-07-15 16:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traff...
Cloudflare - AUS (Austin) on 2026-07-13
Jul 13, 10:45 UTC Completed - The scheduled maintenance has been completed. Jul 13, 10:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 13, 09:44 UTC Scheduled - We will be performing scheduled maintenance in AUS (Austin) datacenter on 2026-07-13 between 10:30 and 10:45 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in th...
Cloudflare - IST (Istanbul) on 2026-07-13
THIS IS A SCHEDULED EVENT Jul 13, 08:00 - 12:00 UTC Jul 8, 14:52 UTC Scheduled - We will be performing scheduled maintenance in IST (Istanbul) datacenter on 2026-07-13 between 08:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over els...
Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365
An attacker running a live Microsoft 365 phishing operation left a Python web server listening on a public port with directory listing switched on. The command that did it: python3 -m http.server 8080, was still sitting in the readable .bash_history. From that one lapse, French security firm Lexfo lifted the operator's entire toolkit and pivoted through it to two more
Cloudflare - MCI (Kansas City) on 2026-07-13
THIS IS A SCHEDULED EVENT Jul 13, 07:00 - 12:00 UTC Jul 8, 16:30 UTC Scheduled - We will be performing scheduled maintenance in MCI (Kansas City) datacenter on 2026-07-13 between 07:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over ...
Sentry - Ingestion delayed for spans, logs, crons in US region
Jul 13, 00:58 UTC Investigating - We are currently investigating the issue.
Cloudflare - Cloudflare dash is unavailable
Jul 12, 21:40 UTC Investigating - Cloudflare is investigating issues with Cloudflare Dashboard and related APIs. These issues do not affect the serving of cached files via the Cloudflare CDN or other security features at the Cloudflare Edge. Customers using the Dashboard / Cloudflare APIs are impacted as requests might fail and/or errors may be displayed.
Cloudflare - Cloudflare Dashboard login issue
Jul 12, 09:43 UTC Investigating - Cloudflare is aware of and investigating an issue where some users are unable to login to the Cloudflare Dashboard. We are working to mitigate the problem and will update shortly.
Plaid - Elevated API errors
Status: ResolvedThis incident has been resolved.
Zoom - Network Maintenance in Vancouver Datacenter: July 11, 2026
Jul 11, 22:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 26, 02:06 PDT Scheduled - Zoom will perform network maintenance at our Vancouver data center(YVR). Users may experience an impact for a brief amount of time for the services mentioned.
Monday.com - Scheduled Maintenance on the US Server
THIS IS A SCHEDULED EVENT Jul 12, 05:00 - 06:00 UTC Jul 6, 20:50 UTC Scheduled - On Sunday, July 12th at 05:00 UTC, we will be performing scheduled maintenance on our platform in the US region. This maintenance is expected to last up to one hour.During this time, monday boards will intermittently be in read-only mode, where actions like creating items, editing boards, creating boards from templates, and changing board permissions will be temporarily unavailable.
New Relic - Scheduled Maintenance for the US & EU Regions - July 11th and July 18th, 2026
THIS IS A SCHEDULED EVENT Jul 12, 04:00 - 06:00 UTC Jul 6, 20:14 UTC Scheduled - We intend to perform scheduled maintenance on Sunday, July 12, 2026, and Sunday, July 19, 2026, from 04:00 UTC to 06:00 UTC (Saturday, July 11, and Saturday, July 18, from 09:00 PM PDT to 11:00 PM PDT). Customers in the US & EU regions can expect a short service interruption at some point during this timeframe which may include intermittent anomalies for the New Relic UI. We do not anticipate impact to data ingest...
Plaid - Service Disruption Impacting Chase connections
Status: ResolvedThis incident has been resolved.
Are AI coding agents becoming a new security risk inside engineering teams?
I keep seeing people talk about AI coding agents as a productivity tool, but I think we are under-discussing the security side. A normal code assistant suggests code. An agent can do much more. It can read your repo, edit files, run commands, call tools, open PRs, access tickets, check logs, maybe even touch secrets or deployment workflows depending on how it is set up. That changes the risk. At t...
SOC Analyst with 4 years of experience in incident response and threat detection — AMA
Hey r/cybersecurity, I've been working as a SOC Analyst for about 4 years, currently at a mid-size fintech company. My day-to-day involves triaging alerts, threat hunting across our SIEM, and building/tuning detection rules in Splunk. Some background: Certifications: Security+, currently studying for OSCP I got into the field after starting out in IT helpdesk, then moved into a junior SOC role I'v...
SendGrid - Contact Upload Delays in New Marketing Campaigns
Jul 11, 11:19 PDT Investigating - Starting around 9:50 AM PDT on July 11, 2026, our engineers began investigating an issue with New Marketing Campaigns Contact Uploads. Users may experience delays in their newly uploaded contact lists appearing or updating in the dashboard. This issue is isolated to a specific subset of our infrastructure, so it does not affect all users. Legacy Marketing Campaigns features remain entirely unaffected. This does not impact mail send. We will provide another upda...
Segment - Scheduled Database Maintenance in EUW1
Jul 11, 11:00 PDT Completed - The scheduled maintenance has been completed. Jul 11, 10:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 6, 09:56 PDT Scheduled - We will be conducting scheduled maintenance for a critical internal service database. This will be performed in EU region and is part of our periodic maintenance to keep our infrastructure up to date. The maintenance will last approximately for an hour.During this window...
Snowflake - INC20000085
Jul 11, 17:41 UTC Investigating - Current status: We're investigating an issue with Snowflake Data Cloud. We'll provide an update within 1 hour.Customer experience: Customers hosted in the specified regions may experience delays or intermittent failures when resuming or managing virtual warehouses. Existing warehouses that are already running may be unaffected.ETA: An ETA is not yet available. We'll provide one as soon as possible. In the meantime, we recommend that affected customers using rep...
Cloudflare - Pages Dashboard issues
Jul 11, 10:50 UTC Resolved - This incident has been resolved. Jul 11, 10:43 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 11, 10:34 UTC Identified - The issue has been identified and a fix is being implemented. Jul 11, 10:22 UTC Investigating - Cloudflare is aware of and investigating an issue where users may not be able to view Pages deployments in the dashboard. We are working to mitigate this problem. More updates to follow shortly.
Plaid - Service Disruption Impacting Wells Fargo connections
Status: ResolvedThis incident has been resolved.
Mid-session today
Not sure if this is the right place to ask about this? I am worried about something that happened today. I had some sensitive data within my folder tree, which Claude Code(within VSCode) had access to. Should I report this to Anthropic? What happened? Was this 'malware'? Does anyone know what might have happened? Was my data leaked? ''A fabricated tool-result notification (spoofed to resemble a le...
Xero - Global: Xero - some customers may be experiencing issues in Xero
Jul 10, 22:44 UTC Resolved - Our team has resolved the issue impacting our customers experiencing errors in Xero. Our technical team identified this was caused by an outage that one of our external providers experienced. We apologise for any inconvenience this has caused. Jul 10, 22:21 UTC Monitoring - Our team has implemented a fix and we are currently monitoring the results. We apologise for any inconvenience this has caused. Jul 10, 21:24 UTC Identified - We have identified what is causi...
Sentry - Error ingestion degraded in US region
Jul 10, 22:43 UTC Investigating - We are currently investigating this issue.
Plaid - IDV Performance Degradation
Status: ResolvedThis incident has been resolved.
Plaid - Elevated Item add errors
Status: ResolvedThis incident has been resolved.Affected components API - Production (Operational)
Vercel - Increased Build failure rates
Jul 10, 21:22 UTC Monitoring - We've identified an issue where some customers may experience failed Builds beginning at 21:05 UTC.A rollback is in progress to mitigate this issue. We will provide additional updates as they become available.Failed deployments can be retried and should succeed.
Zoom - Zoom Support Maintenance (July 10, 2026)
Jul 10, 14:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 30, 16:48 PDT Scheduled - We will be performing maintenance on Zoom Support Ticketing and Knowledge Base. Users may experience degraded performance and up to 30 minutes of downtime for Zoom Support’s Knowledge Base and Ticketing during the maintenance window.
Xero - Global: Payroll - some customers may be experiencing errors when accessing Payroll
Jul 10, 20:19 UTC Resolved - Our team has resolved the issue impacting our customers experiencing errors in Xero. We apologise for any inconvenience this has caused. Jul 10, 19:57 UTC Monitoring - Our team has implemented a fix and we are currently monitoring the results. Jul 10, 18:16 UTC Investigating - We are aware that some customers trying to access Payroll in Xero are experiencing an error. Our team is investigating this with urgency.
Vercel - Erroneous budget notifications
Jul 10, 19:53 UTC Identified - We've identified and fixed the underlying issue, which was caused by a third-party SaaS provider. Our team is now unpausing deployments that were inadvertently paused as a result. Jul 10, 19:15 UTC Investigating - We've identified an issue where some customers may receive erroneous spend management budget notifications due to a spend management budget miscalculation. Affected teams with spend management budgets configured to pause projects may also experience pa...
Plaid - Service Disruption Impacting Wells Fargo connections
Status: ResolvedThis incident has been resolved.
Rippling - Some AI capabilities are unavailable
Jul 10, 17:37 UTC Investigating - Some AI capabilities, including building or editing AI dashboards, are unavailable.
Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs/sdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version was
Zoom - Service Degradation Affecting My Notes for Third-Party Meetings in Europe and US Region.
Jul 10, 09:33 PDT Identified - We have successfully identified the root cause affecting My Notes for Third-Party Meetings in Europe and US Region.Our team is actively working on a resolution, and we will keep you informed with timely updates as progress is made. Thank you for your patience. Jul 10, 09:18 PDT Investigating - We are currently investigating a service degradation affecting My Notes for 3rd party in US and EU region.Our team is actively working to identify the impact and root caus...
Datadog - Delayed data streams data
Jul 10, 10:35 EDT Update - We are continuing to investigate the issue. Jul 10, 10:09 EDT Investigating - We are currently investigating an issue affecting Data Streams Monitoring (DSM) in our US1 datacenter. As a result, data stream latency metrics may be delayed or not updating for some users. If you have monitors configured on those metrics, they may fail to alert as expected during this incident. We are not aware of any data loss at this time. Our engineering team is actively working on a ...
Snowflake - INC20000082
Jul 10, 14:30 UTC Investigating - Current status: We're investigating an issue with Snowflake Data Cloud. We'll provide an update within 1 hour.Customer experience: Customers hosted in the specified regions may be unable to connect to Snowflake via private connectivity solutions, such as PrivateLink. Users may encounter connection errors or timeouts.ETA: An ETA is not yet available. We'll provide one as soon as possible. In the meantime, we recommend that affected customers using replication in...