AI Security Digest
Aggregated ecosystem risk analysis
Vendor Watchlist
Tracking 0 critical integrations
Threat Stream Feed
Real-time security logs and system alerts
Cloudflare - EWR (Newark) on 2026-07-16
Jul 16, 19:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 16, 09:39 UTC Scheduled - We will be performing scheduled maintenance in EWR (Newark) datacenter between 2026-07-16 19:00 and 2026-07-17 00:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
Cloudflare - BKK (Bangkok) on 2026-07-16
Jul 16, 18:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 16, 18:25 UTC Scheduled - We will be performing scheduled maintenance in BKK (Bangkok) datacenter on 2026-07-16 between 18:30 and 22:30 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this locatio...
Supabase - S3 endpoints for keys with special characters broken
Jul 16, 17:55 UTC Identified - We have identified an issue where S3 endpoints for keys with special characters will be broken. We are actively investigating the correct mitigation for this issue.
New Exploitable BOLA Found in Immich (self-hosted media platform)
Full disclosure I'm at Escape but wanted to share something we found that would be interesting to those here! Escape's security research team found a Broken Access Control flaw in Immich which let any user read photos in a locked folder without the required PIN. Immich is a self-hosted media platform with 100k+ stars on GitHub. Their "locked folder" hides sensitive assets behind a PIN-elevated se...
Cloudflare - KUL (Kuala Lumpur) on 2026-07-16
Jul 16, 17:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 16, 12:55 UTC Scheduled - We will be performing scheduled maintenance in KUL (Kuala Lumpur) datacenter on 2026-07-16 between 17:00 and 23:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this lo...
Cloudflare - Durable Objects Increased Errors
Jul 16, 16:53 UTC Update - We are continuing to work on a fix for this issue. Jul 16, 16:49 UTC Identified - The cause of this issue has been identified and a fix is being implemented. Jul 16, 16:44 UTC Update - Cloudflare is investigating issues causing an increase of errors for Durable Objects and downstream services in multiple regions (Europe and APAC). Jul 16, 16:43 UTC Update - We are continuing to investigate this issue. Jul 16, 16:39 UTC Investigating - Cloudflare is investigati...
DigitalOcean - Reserved IP routing in TOR1
Jul 16, 15:30 UTC Identified - Our Engineering team has identified the cause of the issue affecting Reserved IP routing in the TOR1 region, which was causing inbound and outbound traffic to and from Reserved IPs in TOR1 to fail.Detaching and reassigning the Reserved IP to the Droplet may restore connectivity in the meantime. We recommend trying this workaround if you are still experiencing issues with your Reserved IP in TOR1.Our engineering team is now working on implementing a fix. We will pr...
Cloudflare - PDX (Portland) on 2026-07-16
Jul 16, 15:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 22:00 UTC Scheduled - We will be performing scheduled maintenance in PDX (Portland) datacenter on 2026-07-16 between 15:00 and 23:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this locati...
New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands
Cybersecurity researchers have called attention to a new modular malware called TELEPUZ that's been spreading via websites infected with ClickFix lures since late April 2026. "The malware is full-featured, lightweight, and modular," Elastic Security Labs researcher Cyril François said in a technical report. "While the number of C2 [command-and-control] domains is currently small, the daily
GCP - RESOLVED: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 and ended at 2026-07-16 05:25 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services experienced a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer...
AWS - Service is operating normally: [RESOLVED] Increased 5xx Errors
Between 12:45 AM and 4:18 AM PDT, we experienced increased 5xx errors for CloudFront customers utilizing VPC Origins connectivity. Our engineers were automatically engaged and immediately began investigating the root cause. By 2:57 AM PDT, we identified the root cause of the issue as an internal constraint on the fleet that manages connections to private VPC origins. When this constraint was reached, the system responsible for distributing routing configuration to our network processors failed t...
Cloudflare - Cloudflare Storage Maintenance
THIS IS A SCHEDULED EVENT Jul 16, 12:00 - 13:00 UTC Jul 6, 22:38 UTC Scheduled - Cloudflare has scheduled maintenance for our backend storage systems. Services will continue to operate normally, but customers will be unable to create/delete/modify Client-Side Security settings via the Dashboard or the public API for a period of up to 3 minutes.The following services will experience configuration and new connections limitations during this window:- Client-Side Security (Page Shield)
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-25089 Fortinet FortiSandbox OS Command Injection Vulnerability CVE-2026-39808 Fortinet FortiSandbox OS Command Injection Vulnerability CVE-2026-58644 Microsoft SharePoint Deserialization of Untrusted Data Vulnerability These types of vulnerabilitie...
NASA Core Flight System (cFS) Health & Safety (HS) Application
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. The following versions of NASA Core Flight System (cFS) Health & Safety (HS) Application are affected: Core Flight System (cFS) Health & Safety (HS) Application CVSS Vendor Equipment Vulnerabilities v3 7.5 NASA NASA Core Flight System (cFS) Health & Safety (HS) ...
Cloudflare - Increase in errors for Zone Settings API
Jul 16, 11:57 UTC Resolved - This incident has been resolved. Jul 16, 11:46 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 16, 11:37 UTC Update - We are continuing to work on a fix for this issue. Jul 16, 11:22 UTC Identified - The issue has been identified and a fix is being implemented. Jul 16, 11:00 UTC Investigating - Cloudflare has identified issue causing an increase of errors for the Zone Settings API. We are working to analyse and mitigate thi...
AWS - Service impact: Increased 5xx Errors
We continue to see significant signs of recovery as a result of our mitigation efforts, with full recovery expected within the next 45 minutes.
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services experienced a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks posed by ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services experienced a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks posed by ...
New Agent Data Injection Attack Can Make AI Agents Misclick or Run Attacker Commands
Ask an AI agent to summarize the reviews on a product page, and a single planted review can make it click "Buy Now" instead. Ask a coding assistant to apply a maintainer's fix from a GitHub thread, and a fake comment can make it run a stranger's command on your computer. Neither trick hijacks the agent's task. Each one just corrupts the facts it trusts and lets it carry on with the job you
AWS - Service degradation: Increased 5xx Errors
We are seeing initial signs of recovery and continue to work toward full recovery.
AWS - Service degradation: Increased 5xx Errors
We continue working to resolve the increased 5xx errors for CloudFront customers utilizing VPC Origins connectivity. Customers utilizing other origin types remain unaffected by this issue. We have further scoped the issue down to routing table capacity within the packet processing subsystem responsible for routing requests from CloudFront's edge locations to resources within customer VPCs. We have identified and are currently testing a mitigation strategy to resolve the issue. Once testing is co...
AWS - Service degradation: Increased 5xx Errors
We continue working to resolve the increased 5xx errors for CloudFront customers utilizing VPC Origins connectivity. Customers utilizing other origin types remain unaffected by this issue. Based on our investigation, we believe the root cause is related to a packet processing subsystem responsible for routing requests from CloudFront's edge locations to resources within customer VPCs. We continue to recommend that customers who are able to do so temporarily change their origin type to resolve th...
GitHub - Disruption with some GitHub services
Jul 16, 09:30 UTC Monitoring - The degradation has been mitigated. We are monitoring to ensure stability. Jul 16, 09:13 UTC Investigating - We are investigating reports of impacted performance for some GitHub services.
Unpatched Shark Vacuum Flaw Could Let Attackers Control Other Vacuums Region-Wide
Pull the certificate off the flash of a Shark RV2320EDUS robot vacuum, and you can run root commands on other people's Shark vacuums across the same AWS region: watch the camera, drive the robot, read the map of the house, and take the Wi-Fi password in plaintext. A researcher publishing under the handle tokay0 put the method online on Monday, having tested it only against vacuums he
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services experienced a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks posed by ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services experienced a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks posed by ...
AWS - Service impact: Increased 5xx Errors
Starting at 12:45 AM PDT, we are experiencing increased 5xx errors for CloudFront customers utilizing VPC Origins connectivity. We have confirmed that customers utilizing other origin types are not impacted by this issue. Our engineers are engaged and are actively working to mitigate impact. As a workaround, customers who do not require VPC Origins can change their origin type to resolve the errors. We will provide another update by 3:15 AM PDT, or sooner if more information becomes available.
Rippling - Access denied
Jul 16, 09:00 UTC Resolved - Rippling displayed "Access denied" to some users accessing Rippling. The issue has been fully mitigated and the Rippling is fully operational again.
AWS - Service impact: Increased 5xx Errors
We are investigating increased 5xx errors for Cloudfront customers utilizing VPC Origins connectivity.
OpenAI’s GPT-Red Automates Prompt Injection Testing to Harden GPT-5.6 Sol
OpenAI has disclosed details of GPT-Red, an internal automated red-teaming model that scales prompt injection vulnerability discovery with an aim to fix issues before the tools are deployed widely. "GPT‑Red is a strong red-teamer, and our previous models are highly vulnerable to its prompt injection attacks," the artificial intelligence (AI) company said. "We use GPT‑Red to adversarially train
Vercel - SAML Single Sign-On (SSO) errors
Jul 16, 08:39 UTC Investigating - We are investigating SAML Single Sign-On (SSO) errors, leading to inability to login using SAML/SSO or access SSO-protected teams through the Vercel dashboard and CLI.
Cloudflare - Magic WAN / Magic Transit tunnel health alert delivery
Jul 16, 08:13 UTC Investigating - We are investigating an issue that may prevent some Magic WAN and Magic Transit tunnel health alert notifications from being delivered. Affected customers may not have received expected notifications for tunnel state changes during this period. Tunnel traffic and routing are not impacted — this issue is limited to alert notifications only.We have identified the likely cause and are working on a fix.
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks pose...
Zoom Patches Critical Windows Flaw That Could Enable Account Takeover
Zoom has released security updates for a critical security flaw impacting Zoom Workplace for Windows that could facilitate account takeover. The vulnerability, tracked as CVE-2026-53412 (CVSS score: 9.8), affects Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows. "Improper Input Validation in Zoom Desktop Client for Windows, Zoom VDI Client for
Cloudflare - DFW (Dallas) on 2026-07-16
Jul 16, 07:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 17:29 UTC Update - We will be performing scheduled maintenance in DFW (Dallas) datacenter on 2026-07-16 between 07:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, p...
Supabase - Projects in stuck state in EU-CENTRAL-1 (Frankfurt)
Jul 16, 07:00 UTC Identified - Our infrastructure provider experienced a connectivity issue in the EU-CENTRAL-1 (Frankfurt) Region, between 4:11 PM PDT and 6:24 PM PDT, which has now been resolved. As a result of this incident, a number of Supabase projects were left in a stuck state. Our team is actively working through the list of impacted projects to restore normal functionality as quickly as possible.We will continue to provide updates as restoration work progresses.
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solution (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure. Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google proactively turned down workloads in order to protect customer data from any risks pose...
Vercel - Missing Build CPU Minutes Usage Data
Jul 16, 06:07 UTC Monitoring - We've identified an issue where some users may see missing Build CPU Minutes data on Usage pages in the Vercel Dashboard. The issue has been resolved, and we are backfilling the affected usage data.
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing temperature alerts in europe-west4-a.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing a service outage in europe-west4-a due to a cooling failure Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google has proactively turned down workloads in order to protect customer data from any risks...
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing temperature alerts in europe-west4-a.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing temperature alerts in europe-west4-a Description The datacenter serving europe-west4-a for GCVE, BMS, and NetApp has experienced a power failure, which subsequently caused a cooling failure. Google has proactively turned down workloads in order to protect customer data from any risks posed by running infras...
GCP - UPDATE: Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing temperature alerts in europe-west4-a.
Incident began at 2026-07-15 16:57 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE), Google Cloud NetApp Volumes, and Bare Metal Solutions (BMS) services are experiencing temperature alerts in europe-west4-a. Description GCVE: Our engineering teams are currently working with data center facility teams to address the rising temperatures. A shutdown has already occurred for some private clouds, and we expect that others will shut down as well. We recommend shutting down your V...
DocuSign - Customers may experience errors executing workflows and uploading documents (Incident 5386)
Jul 16, 03:33 UTC Resolved - The incident has been resolved. Incident duration and timelines are subject to revision pending the results of any related investigation. Jul 16, 03:27 UTC Identified - We have identified the issue and a fix is being implemented. Jul 16, 03:27 UTC Investigating - We are actively investigating this issue.
AWS - Service is operating normally: [RESOLVED] Elevated connectivity issues with a single Avalability zone
Between 2:56 PM and 6:07 PM PDT, we experienced connectivity issues to a subset of EC2 instances in a single Availability Zone (euc1-az2) in the EU-CENTRAL-1 Region. During this time, customers may also have experienced increased error rates and latencies for new instance launches in the affected zone, along with some AWS APIs that use the affected EC2 instances. Some AWS Services also experienced connectivity issues and increased error rates within the affected zone. Engineers were automaticall...
Cloudflare - Cloudflare R2 Issues
Jul 16, 01:12 UTC Identified - Cloudflare is investigating elevated error rates affecting R2 and some services that depend on it, including Stream, Pipelines, and Log Explorer. Customers may have experienced increased errors reading or writing objects and delayed data processing. Impact was partially mitigated at approximately 21:52 UTC, and dependent services have recovered. A low level of R2 errors is still occurring, and we are actively working toward full resolution.
Cloudflare - MAD (Madrid) on 2026-07-16
Jul 16, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 02:14 UTC Scheduled - We will be performing scheduled maintenance in MAD (Madrid) datacenter on 2026-07-16 between 00:00 and 06:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Zoom - Zoom Workforce Management Update: 7/15/2026 (No Operational Impact)
Jul 15, 17:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 12:33 PDT Scheduled - We will be providing an update to Zoom Workforce Management. Please refer to https://support.zoom.com/hc/en/article?id=zm_kb&sysparm_article=KB0068337 for more details. This update includes the ability to import staffing data at the interval level.There is no operational impact. All services will be available during this scheduled update.
AWS - Service impact: Elevated connectivity issues with a single Avalability zone
We are seeing early signs of recovery and continue to work toward full resolution. We will continue to provide updates.
Vercel - Errors accessing teams that require 2FA
Jul 15, 23:34 UTC Resolved - This incident has been resolved. Jul 15, 23:16 UTC Monitoring - A fix has been implemented and services have recovered. We are continuing to monitor to ensure that the services remain stable. We will provide additional updates as they become available. Jul 15, 23:04 UTC Identified - We have identified an increase in erroneous 2FA (two-factor authentication) challenges and errors when accessing the Vercel dashboard and multiple API services for teams that require...
AWS - Service impact: Elevated connectivity issues with a single Avalability zone
We are investigating elevated connectivity issues with a single Avalability zone (euc1-az2) in the EU-CENTRAL-1 Region.
GHSA-9h85-g7w3-rh49: Render Vulnerability
ViewComponent: Reused Component Instances Retain Stale Render Context
Cloudflare - PDX (Portland) on 2026-07-15
Jul 15, 18:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 18:14 UTC Scheduled - We will be performing scheduled maintenance in PDX (Portland) datacenter between 2026-07-15 18:30 and 2026-07-16 01:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in thi...
SendGrid - Delayed Processing for SendGrid Account Actions
Jul 15, 11:11 PDT Investigating - Starting around 10:09 AM PDT on July 15, 2026, our engineers began investigating an issue with account actions. Users may experience delays with account management tasks, such as password resets. This does not impact mail send. We will provide another update in 1 hour or as soon as more information becomes available.
File-Binding, Process-Binding, and Silo-Binding - new process impersonation techniques for EDR evasion
TL;DR: One documented Windows feature, the Bind Filter, gives an attacker who already holds local administrator rights three ways to make one file look like another to every path-based defense on the box. No vulnerable driver, no exploit. Bitdefender Labs named and documented all three: File-Binding, Process-Binding, and Silo-Binding: - File-Binding hijacks what a target loads or reads. Shadow the...
Cloudflare - Elevated errors in ENAM region
Jul 15, 15:45 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 15:28 UTC Identified - The issue has been identified and a fix is being implemented. Jul 15, 15:22 UTC Investigating - Customers may experience elevated error rates in ENAM region
Cloudflare - Network Performance Issues in AMS
Jul 15, 14:53 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 14:19 UTC Identified - The issue has been identified and a fix is being implemented. Jul 15, 13:39 UTC Investigating - Cloudflare is investigating issues with network performance in Amsterdam. We are working to analyse and mitigate this problem. More updates to follow shortly.
KQL Queries for new Chaotic Eclipse Zero day 'Legacy Hive'
Literally after July 2026 Patch Tuesday, Chaotic Eclipse dropped a functional zero-day PoC called LegacyHive an arbitrary hive load Elevation of Privilege (EoP) vulnerability targeting the Windows User Profile Service (ProfSvc). Because the exploit works on fully patched systems by mounting targeted user hives into the current user's classes root, I've put together two KQL hunting queries for this...
Firefox, Chrome, Adobe, and VMware Updates Fix Multiple Critical Security Flaws
Mozilla has released updates to address two critical flaws in Firefox for which it warned that exploit code has been published. The vulnerabilities are listed below - CVE-2026-15718, an invalid pointer in the JavaScript: WebAssembly component CVE-2026-15719, a site isolation in the DOM: Navigation component "We are aware that exploit code for this is public, however we are not aware of
Cloudflare - Network Performance issues - Increased HTTP 502 Errors in HKG
Jul 15, 11:00 UTC Monitoring - Cloudflare is investigating an increased level of HTTP 502 errors originating from the Hong Kong datacenter. We are working to analyse and mitigate this problem. More updates to follow shortly.
Cloudflare - BOG (Bogotá) on 2026-07-15
Jul 15, 11:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 15, 10:08 UTC Scheduled - We will be performing scheduled maintenance in BOG (Bogotá) datacenter on 2026-07-15 between 11:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location...
Cloudflare - ATL (Atlanta) on 2026-07-15
THIS IS A SCHEDULED EVENT Jul 15, 06:00 - 13:00 UTC Jul 13, 20:22 UTC Scheduled - We will be performing scheduled maintenance in ATL (Atlanta) datacenter on 2026-07-15 between 06:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over else...
FortiSandbox CVE-2026-59835 exposes sandbox VNC sessions without authentication
Fortinet has disclosed CVE-2026-59835, an unauthenticated VNC exposure affecting FortiSandbox 5.0.0 - 5.0.2 and 4.4.3 - 4.4.8. The flaw can allow remote attackers to access the VNC server of virtual machines performing malware analysis via network requests, potentially exposing live sandbox sessions. Patches have been released by Fortinet on 14 July, and organizations using affected versions...
GCP - RESOLVED: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 and ended at 2026-07-14 21:46 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers may have experienced zonal outages impacting network connectivity across multiple regions. Description We experienced an inter-site communication issue with Google Cloud VMware Engine (GCVE) Stretched Cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We identified the affected customers, and have worked with them to fully m...
Box - [Medium] Issues with Box Relay
Jul 14, 21:50 PDT Identified - Our team has identified the underlying cause of this issue and is working to take remediating steps. We will provide additional updates as they become available. Jul 14, 21:14 PDT Investigating - We are investigating an ongoing issue affecting Box Relay. We will provide additional information as it becomes available.
Cloudflare - YYZ (Toronto) on 2026-07-15
THIS IS A SCHEDULED EVENT Jul 15, 04:00 - 10:00 UTC Jul 14, 00:03 UTC Update - We will be performing scheduled maintenance in YYZ (Toronto) datacenter on 2026-07-15 between 04:00 and 10:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over elsewhe...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Expensify - Problems uploading receipts
Jul 15, 02:55 UTC Resolved - This incident has been resolved. Jul 15, 02:43 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jul 15, 02:36 UTC Update - We are continuing to work on a fix for this issue. Jul 15, 02:35 UTC Identified - The issue has been identified and a fix is being implemented.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Supabase - Errors configuring authentication providers
Jul 15, 00:50 UTC Resolved - This issue has been resolved. Jul 15, 00:34 UTC Monitoring - A fix has been deployed for the issue that affects configuring Authentication Providers. We are monitoring the results to confirm the issue has been fully resolved. Jul 15, 00:25 UTC Identified - We have identified the issue and are actively working on a fix. We will share another update as soon as we have more information. Jul 15, 00:04 UTC Investigating - We are currently investigating an issue aff...
Elastic Cloud - Cloud Console Deployment Errors
Jul 15, 00:31 UTC Monitoring - The ability to manage Elastic Cloud Hosted deployments via the Cloud Console has been restored Jul 15, 00:15 UTC Investigating - We are investigating errors with our cloud console affecting access to create, update, delete and view Elastic Cloud Hosted deployments. Our team is actively investigating the cause so that they can mitigate and restore the service.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Cloudflare - LHR (London) on 2026-07-15
Jul 15, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 15:17 UTC Scheduled - We will be performing scheduled maintenance in LHR (London) datacenter between 2026-07-15 00:00 and 2026-07-16 16:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
Cloudflare - LHR (London) on 2026-07-14
Jul 14, 23:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 13:49 UTC Scheduled - We will be performing scheduled maintenance in LHR (London) datacenter between 2026-07-14 23:00 and 2026-07-15 07:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an inter-site communication issue with Google Cloud VMware Engine (GCVE) stretched cluster customers beginning Tuesday, 2026-07-14 at 10:00 PDT. We have identified the customers that are affected by this issue and we are working with them on mitiga...
DocuSign - Some Document Generation customers are being redirected to the CLM home page (Incident 5384)
Jul 14, 20:48 UTC Investigating - We are actively investigating this issue.
GCP - UPDATE: Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions.
Incident began at 2026-07-14 10:00 (all times are US/Pacific).Summary Google Cloud VMware Engine (GCVE) Stretched Cluster customers are experiencing zonal outages impacting network connectivity across multiple regions. Description We are experiencing an issue with Google Cloud VMware Engine (GCVE) beginning Tuesday, 2026-07-14 at 10:00 PDT. We are continuing to investigate and mitigate the issue. We believe this disruption is isolated to network connectivity issues for stretch clusters, while S...
GitHub - Incident with Webhooks
Jul 14, 17:55 UTC Monitoring - The degradation affecting Webhooks has been mitigated. We are monitoring to ensure stability. Jul 14, 17:55 UTC Update - Between 15:17 and 15:27 UTC, an ongoing deployment had an unintended side effect where webhook delivery states were not persisted in all cases, even when deliveries were accepted and processed. Customers may notice missing webhook deliveries in the UI, and these deliveries will not be retryable.Impact resolved automatically once the deployment...
SendGrid - Twilio SendGrid Email Delays
Jul 14, 10:50 PDT Resolved - Our engineers have investigated and resolved the issues with email delays that involved a certain subset of users. From 10:20 AM PST to 10:25 AM PST customers may have experienced delays with email deliverability for a certain subset of users. This would have impacted Email API and Marketing mail sending. There was no data loss due to this incident. The issue has been resolved and all impacted services are operating normally.
DocuSign - Some customers (including Notary customers) may not be able to authenticate via LexisNexis' Knowledge-Based Authentication, leading to failure in signing envelopes. (Incident 5383)
Jul 14, 17:44 UTC Update - LexisNexis is continuing to investigate the issue. Jul 14, 17:09 UTC Investigating - LexisNexis has been made aware of the issue and are currently investigating.
Researchers Say Claude for Chrome Flaw Lets Rogue Extensions Trigger Gmail Reads
Any other browser extension that can run a script on claude.ai can still trigger Claude for Chrome tasks aimed at your Gmail, your latest Google Doc and its comments, and your Calendar. Both this and ClaudeBleed need a rogue extension that can already run a script on claude.ai; the difference is scope. Anthropic restricted the arbitrary-prompt path in May as part of its response to the
HubSpot - Performance Degradation (Latin America Region)
Jul 14, 12:42 EDT Resolved - We have resolved a performance issue that was causing elevated latency for some users in Latin American regions between July 3rd and July 14th, 2026.Our infrastructure team identified the root cause and the network routing configuration has been corrected. Traffic has been restored to the optimal path and performance has returned to expected levels.We sincerely apologize for the inconvenience and thank you for your patience.
HubSpot - Content previews are unavailable for some customers in North America
Jul 14, 12:31 EDT Identified - Content previews are not loading for some customers in North America. This issue is limited to customers with certain internet providers. We are working with those third-party providers to fix the issue.As a workaround, we recommend:- Using a different Wi-Fi or internet connection (e.g. mobile hotspot)- Checking your internet service provider security settings or contacting your internet service provider to unblock hubspotpreview-na2.comThe information on this pag...
Cloudflare - Elevated number of 502 errors for CDN/Cache in SIN
Jul 14, 16:00 UTC Resolved - Between 16:52-17:10 UTC today, customers would have experienced an elevated number of 502 errors from our CDN/Cache and Durable Objects in SIN.
Cloudflare - Elevated R2 errors in WEUR region
Jul 14, 15:38 UTC Identified - The issue has been identified and a fix is being implemented. Jul 14, 15:23 UTC Investigating - Customers may experience elevated error rates in WEUR region
Sentry - Error ingestion degraded in DE region
Jul 14, 14:44 UTC Investigating - We are currently investigating the issue.
Cloudflare - Gateway List updates using CSV not applied
Jul 14, 11:55 UTC Identified - Cloudflare is aware of and investigating an issue where changes applied via CSV to Gateway Lists are not being applied. More updates to follow shortly.
GitHub - Disruption with some GitHub services
Jul 14, 08:22 UTC Update - Codespaces is experiencing degraded performance. We are continuing to investigate. Jul 14, 08:21 UTC Investigating - We are investigating reports of impacted performance for some GitHub services.
Cloudflare - MCI (Kansas City) on 2026-07-14
Jul 14, 07:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 13, 13:22 UTC Scheduled - We will be performing scheduled maintenance in MCI (Kansas City) datacenter on 2026-07-14 between 07:00 and 13:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this loc...
Xero - Global: Invoicing - Some customers are experiencing errors or slowness when accessing Invoicing in Xero
Jul 14, 06:43 UTC Resolved - Our team has resolved the issue impacting some customers experiencing slowness or errors when accessing invoicing in Xero. We apologise for any inconvenience this has caused. Our technical team identified this was caused a momentary period of issues with network connectivity, and our team has restored service. Jul 14, 04:57 UTC Investigating - We are aware of some customers experiencing slowness or receiving errors when accessing Invoicing in Xero. Our team is inv...
Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three Paths
Attackers whose methods line up with the data-extortion group ShinyHunters have spent the past year walking into corporate Salesforce environments without exploiting a single flaw in the platform. The way in has been the trust the organization had already extended, usually through the OAuth connections that tie Salesforce to the apps and third-party vendors around it. In
Cloudflare - Network Performance Issues in Haikou, China (HAK)
Jul 14, 06:00 UTC Resolved - Earlier today Cloudflare experienced network degradation in Haikou, China that affected some users. The period of impact was roughly between 14th July 2026, 05:45 - 06:07 UTC. Those issues have been resolved.
Cloudflare - IAD (Ashburn) on 2026-07-14
THIS IS A SCHEDULED EVENT Jul 14, 06:00 - 12:00 UTC Jul 13, 10:26 UTC Scheduled - We will be performing scheduled maintenance in IAD (Ashburn) datacenter on 2026-07-14 between 06:00 and 12:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this location, please make sure you are expecting this traffic to fail over else...
Sumo Logic - Problem with Metrics Searches in North America 1 (US1)
Jul 14, 05:35 UTC Resolved - We are no longer seeing issues with Metrics Searches and normal operation has been restored at this time. Jul 14, 05:32 UTC Monitoring - We have implemented a fix for the issue affecting Metrics Searches. The symptoms are: latency in processing and displaying metrics data. We are currently monitoring the results. Jul 14, 03:19 UTC Investigating - We are currently investigating reports of problems with Metrics Searches. Users relying on metrics queries may see e...
Cloudflare - BCN (Barcelona) on 2026-07-14
Jul 14, 04:45 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jul 14, 04:35 UTC Update - We will be performing scheduled maintenance in BCN (Barcelona) datacenter between 2026-07-14 04:45 and 2026-07-15 21:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in the affected region. For PNI / CNI customers connecting with us in this ...
Cloudflare - Elevated errors in item PUT requests to AI Search
Jul 14, 04:01 UTC Investigating - Cloudflare is observing issues with Cloudflare AI Search service.We are currently working on a resolution. More updates to follow shortly.
Cloudflare - Elevated R2 errors in EU region
Jul 14, 03:46 UTC Investigating - Cloudflare is observing issues with Cloudflare R2 service.We are currently working on a resolution. More updates to follow shortly.
Supabase - Scheduled Platform Maintenance July 14th, 2026
THIS IS A SCHEDULED EVENT Jul 14, 03:00 - 04:00 UTC Jul 1, 17:06 UTC Scheduled - We will be carrying out a scheduled maintenance window to perform internal platform improvements and upgrades. Maintenance Window: - Start time: 03:00 UTC on July 14, 2026 - End time: 04:00 UTC on July 14, 2026Impact: - Various platform operations will be delayed during this window- These may include project creation and initial configuration/setup- All affected operations will be rescheduled at the end of the win...
GHSA-jr9p-4h4j-6c58: Docker Vulnerability
Kimai: Default APP_SECRET in Docker Image Enables Cookie Forgery and Account Takeover