AI Security Digest
Aggregated ecosystem risk analysis
Vendor Watchlist
Tracking 0 critical integrations
Threat Stream Feed
Real-time security logs and system alerts
Clean GitHub repo tricks AI coding agents into running malware
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human reviewers. [...]
GitHub - Disruption with some GitHub services
Jun 27, 14:04 UTC Monitoring - The degradation has been mitigated. We are monitoring to ensure stability. Jun 27, 14:02 UTC Update - We are conducting routine maintenance on our network infrastructure in the EU. This will not impact production traffic, but may result in slightly increased latency for the remainder of our work. We expect this to last until 19:00 UTC. Jun 27, 14:02 UTC Investigating - We are investigating reports of impacted performance for some GitHub services.
Zoom - Service Degradation Affecting Zoom Phone Inbound calls in US Region
Jun 27, 06:41 PDT Resolved - This incident has been resolved and the affected services have been restored. Jun 27, 06:30 PDT Monitoring - The service degradation affecting Zoom Phone Inbound calls in US Region has been successfully resolved. Our team will continue to monitor the situation closely and keep you informed of any further developments. Jun 27, 06:11 PDT Identified - We have successfully identified the root cause affecting Zoom Phone Inbound calls in US Region. Our team is activel...
OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards
OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While Sol is the latest flagship model and the most powerful, Terra strikes a balance between efficiency and power, and Luna is fine-tuned for speed and affordability. "GPT‑5.6 Sol launches with our most
DigitalOcean - Anthropic Inference Model Availability
Jun 27, 05:15 UTC Resolved - Our Engineering team has resolved the issue that was causing HTTP 400 errors for requests to Anthropic models. Users should now be able to access Anthropic models without any issues.If you continue to experience problems, please open a ticket with our Support team so we can investigate further.We apologize for any inconvenience this may have caused. Jun 27, 04:43 UTC Monitoring - Our Engineering team has mitigated an issue with Anthropic models. Previously, users ...
Plaid - Maintenance: Scheduled maintenance : 07-01 : MongoDB Upgrade
Status: ScheduledPlaid is planning maintenance on Wednesday, July 1st, 2026 from 04:00 UTC - 06:00 UTC. During this window, we expect Affected components API - Sandbox (Under maintenance) API - Production (Under maintenance)
GHSA-44cp-c3ww-9rv5: Heap Vulnerability
ImageMagick has a Heap Buffer Over-Write in SF3 encoder when writing multi-frame image
ActiveCampaign - Issue with Campaign Editor
Jun 26, 17:38 CDT Update - We are continuing to investigate this issue. Jun 26, 17:38 CDT Investigating - Engineers are currently investigating an issue affecting some customers in the campaign editor. For impacted accounts, clicking the Save and Exit or Next buttons may not respond as expected, which can prevent users from moving forward in the editor.Engineers are engaged and are actively working on the issue.
GHSA-hg3w-7f8c-63hp: GitHub Vulnerability
pnpm: Tarball hash of GitHub git dependencies is not stored in lockfile
DocuSign - Some customers may experience latency for any sending actions that involve conversions, generating documents and accessing tasks (Incident 5190) (Incident 5209)
Jun 26, 18:06 UTC Identified - We have identified the issue and a fix is being implemented.
Cybersecurity firms targeted by fraudulent OpenAI organization invites
Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company information in chats and projects. [...]
Plaid - Maintenance: Chase Scheduled Maintenance
Status: ScheduledChase is planning maintenance from 28 June 12:00 AM UTC to 28 June 11:00 AM UTC. During this window, we expect up to 660 minutes of downtime for Item adds and/or API calls and/or scheduled updates.Affected components API - Production (Under maintenance)
Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign
A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia. The activity, particularly aimed at state-owned enterprises in the energy and government sectors, has been attributed to a threat actor called CL-STA-1062, which Palo Alto Networks
Cloudflare - Errors when uploading Custom Certificates
Jun 26, 15:00 UTC Resolved - This incident has been resolved. Jun 26, 12:33 UTC Investigating - Cloudflare is investigating 500/2000 errors when customers attempt to upload a new custom certificate. Custom certificates already in production remain unaffected and are operating normally.
CircleCI - Xcode 26.6 Demand + Queueing
Jun 26, 15:00 UTC Resolved - We observed a surge in demand for Xcode 26.6 and have since mitigated the incident by increasing the available capacity for that Xcode version. Customers may have seen jobs queueing for ~10-15 mins.
Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and Amazon Q does the rest. Amazon has patched it. Tracked as CVE-2026-12957 (CVSS 8.5), the bug sat in how Amazon's AI coding assistant handled Model Context Protocol (MCP) servers. Wiz
Cloudflare - Increased 499 errors in Ashburn, US between 13:48 - 14:06 UTC
Jun 26, 13:48 UTC Resolved - Visitors, specifically in the Ashburn, US region between 13:48 - 14:06 UTC today, may have encountered 499 errors. This issue did not affect any other Cloudflare services. The issue has since been rectified.
Datadog - Delayed APM Trace Metrics
Jun 26, 09:41 EDT Monitoring - A fix has been implemented and we are monitoring the results. Jun 26, 09:38 EDT Identified - We have identified increased latency processing APM Trace Metrics and are working on a fix.As a result of this issue, some users may see delayed APM Trace Metrics since 13:07 UTC.To prevent false monitor alerts due to delayed data, monitors affected by the delay will not notify and will automatically resume once current data is available. All other monitors will operate ...
Vercel - Elevated Errors on Vercel Dashboard
Jun 26, 13:23 UTC Update - We are continuing to investigate this issue. Jun 26, 13:08 UTC Investigating - We are currently investigating the issue. Some users are experiencing errors authenticating.
Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials
https://www.helpnetsecurity.com/2026/06/26/mirage2fa-phishing-kit-microsoft-365-html-smuggling/   submitted by   /u/sunychoudhary [link]   [comments]
Cloudflare - 404 error when accessing Support cases
Jun 26, 11:29 UTC Resolved - This incident has been resolved. Jun 26, 09:50 UTC Identified - The issue has been identified and a fix is being implemented. Jun 26, 09:41 UTC Investigating - Cloudflare is investigating issues with accessing support tickets via the Cloudflare dashboard. Customers attempting to access their support tickets may observe 404 errors during this time. This issue does not affect any other Cloudflare services. We are working to mitigate this problem. More updates to f...
Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack
Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware family that has compromised a new set of npm packages, even as it has propagated to the Go ecosystem. "The latest activity includes malicious npm releases affecting LeoPlatform and RStreams packages, GitHub Actions workflow abuse, and a related Go
Slack - Incident: Chat functionality unavailable on Slack Help page
We've resolved the issue and users can now use the Chat feature on the Slack Help Center. We performed a configuration change, which brought the feature back online and have validated that it's functioning as expected. We apologize for how this incident may have affected you and your business.
Zoom - Scheduled Update to Prompt versions for Clients (June 25, 2026)
Jun 25, 21:01 PDT Completed - The scheduled maintenance has been completed. Jun 25, 18:01 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 16, 18:26 PDT Scheduled - Zoom will be updating the Prompt version for Zoom clients on June 25, 2026, to the following versions: Windows: 7.0.5macOS: 7.0.5Linux: 7.0.5Android: 7.0.5iOS: 7.0.5VDI : 6.6.15For more information, such as specific versions, please refer to the Zoom Minimum, Prompted, ...
Supabase - Scheduled Platform Maintenance 06/26
Jun 26, 04:00 UTC Completed - The scheduled maintenance has been completed. Jun 26, 03:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 22, 14:12 UTC Scheduled - We will be carrying out a scheduled maintenance window to perform internal platform improvements and upgrades. Maintenance Window: - Start time: 03:00 UTC on June 26, 2026 - End time: 04:00 UTC on June 26, 2026Impact: - Various platform operations will be delayed during ...
Zoom - Scheduled Update to Slow versions for Clients (June 25, 2026)
Jun 25, 21:00 PDT Completed - The scheduled maintenance has been completed. Jun 25, 18:00 PDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 16, 18:20 PDT Scheduled - Zoom will be updating the Slow track versions for Zoom clients on June 25, 2026, to the following versions:Windows: 7.0.5macOS: 7.0.5Linux: 7.0.5Android: 7.0.5iOS: 7.0.5VDI : 6.6.15 For more information, such as specific versions, please refer to the Zoom Minimum, Prompt...
DirtyClone (CVE-2026-43503): JFrog's catch on the DirtyFrag fix regression, with a detectable PoC
JFrog published a finding today on a regression in the DirtyFrag kernel fix. They named it DirtyClone (CVE-2026-43503). It is the same corruption primitive as the DirtyFrag family (CVE-2026-43284 / CVE-2026-43500), reached through a different path. The original patch closed the known trigger but left the primitive reachable. DirtyClone routes the payload through the netfilter TEE clone target, whi...
Cloudflare - Cloudflare Workers AI Issues
Jun 26, 02:15 UTC Resolved - This incident has been resolved. Jun 26, 00:32 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 23:59 UTC Investigating - Cloudflare has identified an issue whereby customers might experience errors from inference requests to @cf/google/gemma-4-26b-a4b-it model using Workers AI.We are working to mitigate this problem. More updates to follow shortly.
Akamai - DataStream Configuration Issues
Jun 26, 00:45 UTC Update - We are actively monitoring the fix for this issue and will share updates on mitigation status as progress continues. Thank you for your patience. Jun 25, 21:59 UTC Monitoring - We have rolled back a release which we believe may have caused this issue as of 20:55 UTC on 25 June 2026; based on current observations, the service is resuming normal operations. Customers and partners can find more details on the Akamai Community: https://community.akamai.com/customers/s/f...
Cloudflare - Increased 5xx errors in the India Region
Jun 26, 00:06 UTC Resolved - This incident has been resolved. Jun 25, 17:26 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 15:14 UTC Identified - The issue has been identified and a fix is being implemented. Jun 25, 14:12 UTC Update - We are continuing to investigate this issue. Jun 25, 14:10 UTC Investigating - Cloudflare is aware of and investigating an increase of 5xx errors on requests in the India region
Xero - AU: Auto Super - Some customers are not receiving auto super approval codes via SMS
Jun 25, 23:33 UTC Resolved - Sinch has resolved the issue impacting Australian customers not receiving auto super approval codes via SMS. We apologise for any inconvenience this has caused. Jun 25, 20:24 UTC Monitoring - Sinch has implemented a fix and are seeing recovery of their systems. Our team is continuing to monitor. Jun 25, 15:41 UTC Identified - We are currently aware of an issue where customers are not receiving auto super approval codes via SMS. This is due to an issue that Sinch...
Datadog - Delayed CI Visibility data
Jun 25, 19:32 EDT Resolved - This incident has been resolved. Jun 25, 19:24 EDT Identified - We have identified the underlying issue and are working on a fix.It is important to note that no data has been lost, and it will be backfilled and available once the service is operational again. Jun 25, 19:23 EDT Investigating - We are investigating increased latency processing CI Visibility data.As a result of this issue, some users may see delays with pipeline executions.
CircleCI - Investigating — Usage API Not Available
Jun 25, 23:03 UTC Resolved - This incident has been resolved. Jun 25, 22:44 UTC Investigating - Customers using the Usage API may not be able to access the API. Our team is investigating.
Anthropic is testing desktop-like Claude Cowork for mobile
Anthropic appears to be testing Claude Cowork support on mobile, allowing you to manage long-running Claude tasks from your phone. [...]
Wix - RESOLVED: Containers Missing Content on Harmony Sites
Jun 25, 22:36 UTC Resolved - The issue has been resolved. If you are still having issues with Harmony container content not loading, please contact Customer Care. Jun 25, 22:26 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 22:12 UTC Identified - The issue has been identified and a fix is being implemented. Jun 25, 20:17 UTC Investigating - We are currently investigating this issue.
DocuSign - Some customers may experience latency for any sending actions that involve conversions, generating documents and accessing tasks (Incident 5190)
Jun 25, 22:29 UTC Resolved - The incident has been resolved. Incident duration and timelines are subject to revision pending the results of any related investigation. Jun 25, 20:57 UTC Identified - We have identified the issue and a fix is being implemented. Jun 25, 20:36 UTC Update - We are continuing to investigate this issue. Jun 25, 20:12 UTC Investigating - We are actively investigating this issue.
Box - [Medium] Issues with Zip Downloads
Jun 25, 14:47 PDT Resolved - After further monitoring, this incident is now considered resolved. The Zip Downloads service has been restored to full functionality. If you continue to experience any issues, please contact Box Support at https://support.box.com. Jun 25, 13:29 PDT Monitoring - Our team has taken steps to remediate this issue and is seeing improvement for the Zip Downloads service. We are continuing to monitor for any additional impact. Jun 25, 12:59 PDT Update - We are continu...
Order-tracking app Shop abused to push callback phishing attacks
Threat actors are increasingly abusing Shop, the order-tracking app from Shopify, by adding fake purchase receipts in users' order histories to trick them into providing sensitive data or installing remote access software. [...]
DocuSign - Users downloading archived document ZIP files may see missing official Docusign platform seals (Incident 5139)
Jun 25, 19:07 UTC Resolved - The incident has been resolved. Incident duration and timelines are subject to revision pending the results of any related investigation. Jun 24, 13:15 UTC Update - The fix is still in progress and being deployed. We will provide an update upon resolution. Jun 18, 22:43 UTC Identified - An issue has been identified where documents downloaded via archived ZIP files with "masked fields" enabled are missing their Docusign platform seals. A fix is underway. We will ...
Supabase - Upgrade Failures
Jun 25, 18:51 UTC Resolved - Through our monitoring, we have determined that project upgrade behavior has returned to normal across the fleet. This incident is resolved. Jun 25, 18:08 UTC Monitoring - We have implemented all necessary mitigations and the project upgrade rates have returned to normal across the fleet. We will continue to monitor these flows for any irregularities or recurring degradation. If you are still experiencing delayed or blocked upgrades on your Project, please contact...
GitHub - Degradation with Webhooks, Pull Requests and Actions
Jun 25, 18:27 UTC Resolved - This incident has been resolved. Thank you for your patience and understanding as we addressed this issue. A detailed root cause analysis will be shared as soon as it is available. Jun 25, 18:27 UTC Update - We identified an issue that caused degradation across multiple services including Webhooks, Pull Requests, Actions, and Issues. Customers may have experienced delays or failures with these services. We have applied mitigations and affected services have recove...
MongoDB Atlas - Courtesy Notice - Intermediate Certificate Authority (CA) change notification from Let’s Encrypt (LE) and Google Trust Services (GTS)
Jun 25, 16:24 UTC Completed - The scheduled maintenance has been completed. Jan 28, 19:41 UTC Scheduled - Please note that this is courtesy notice and no action is required from you if you do not pin intermediate certificates from Let's Encrypt (LE) and/or Google Trust Services (GTS) in your environment when connecting to Atlas dedicated clusters. Let's Encrypt (LE) and Google Trust Services (GTS) have issued additional intermediate certificates to their services. Intermediate certificates ac...
Optimizely - Data Processing Delays in NA
Jun 25, 14:53 UTC Resolved - This incident has been resolved. Jun 24, 10:25 UTC Update - The data processing delay has been resolved, and processing has returned to normal. Recurring campaigns have been resumed, and continuous campaigns are now running as usual.Our team is actively monitoring the system to ensure continued stable performance. We will provide a final update once we have confirmed full recovery.We apologize for any inconvenience this may have caused. Jun 24, 09:20 UTC Update ...
Cloudflare - Workers KV errors via REST API
Jun 25, 14:31 UTC Resolved - This incident has been resolved. Jun 25, 14:21 UTC Update - We are continuing to monitor for any further issues. Jun 25, 14:04 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 13:13 UTC Investigating - Cloudflare is investigating errors accessing Workers KV via the REST API and Hyperdrive connections using Cloudflare Tunnel or Access. Workers KV operations via Workers bindings are not affected.
Vercel - Increase in Workflow runs stuck as pending
Jun 25, 13:43 UTC Resolved - This incident has been resolved. Jun 25, 13:30 UTC Monitoring - The fix has been fully rolled out and we are monitoring the results. Jun 25, 12:15 UTC Update - We are currently rolling a fix for the issue. We are monitoring the results. Jun 25, 10:42 UTC Update - We are still working on a fix for this issue. While we fix the issue, users experiencing pending Workflow runs can trigger an instant rollback to a working deployment created before Jun 24 21:00 UTC t...
DocuSign - Platform Latency in UAT (Incident 5187)
Jun 25, 13:01 UTC Resolved - The incident has been resolved. Incident duration and timelines are subject to revision pending the results of any related investigation. Jun 25, 10:27 UTC Monitoring - Fix has been implemented and we are now monitoring telemetry to validate. Jun 25, 10:12 UTC Identified - We have identified the source of the issue and are preparing a fix. Jun 25, 08:44 UTC Investigating - Customers may be experiencing latency on the platform in the UAT Environment. Engineers ...
pydicom pynetdicom Library
View CSAF Summary Successful exploitation of this vulnerability could allow an unauthenticated attacker to write to arbitrary file paths. The following versions of pydicom pynetdicom Library are affected: pynetdicom >=v1.0.0|<v3.0.4 CVSS Vendor Equipment Vulnerabilities v3 9.1 pydicom pydicom pynetdicom Library Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'...
Zoom - Service Degradation Affecting Zoom Web Service in Philippines.
Jun 25, 04:15 PDT Resolved - This incident has been resolved and the affected services have been restored. Jun 24, 23:44 PDT Monitoring - The issue affecting Zoom Web Service in Philippines between 04:31 UTC - 06:10 UTC has been successfully resolved. Our team will continue to monitor the situation closely and keep you informed of any further developments. Jun 24, 23:27 PDT Identified - We have successfully identified the root cause affecting Zoom Web Service in Philippines. Our team is act...
MongoDB Atlas - MongoDB Atlas: Atlas UI loading issues
Jun 25, 10:16 UTC Resolved - From 2026-06-25 06:55 UTC to 2026-06-25 07:10 UTC, some users may have experienced intermittent Atlas UI loading failures. We identified elevated traffic to a number of endpoints that increased latency in the Atlas UI service. This caused internal health checks to fail and temporarily reduced healthy Atlas UI capacity.We restored healthy Atlas UI capacity and applied additional rate limiting to the affected traffic paths. We are continuing follow-up work to further ...
Cloudflare - Network Performance Issues in Ashburn
Jun 25, 07:24 UTC Resolved - This incident has been resolved. Jun 25, 06:55 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 06:27 UTC Investigating - Cloudflare is investigating issues with Network Performance in Ashburn, VA (IAD)We are working to analyze and mitigate this problem. More updates to follow shortly.
Cloudflare - ARN (Stockholm) on 2026-06-25
Jun 25, 05:00 UTC Completed - The scheduled maintenance has been completed. Jun 25, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 19, 14:18 UTC Scheduled - We will be performing scheduled maintenance in ARN (Stockholm) datacenter on 2026-06-25 between 00:00 and 05:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in...
CircleCI - Issues with network routing for Mac jobs
Jun 25, 03:06 UTC Resolved - We are concluding this incident based on a confirmed fix with our infrastructure provider and successful tests. For any customers seeing failed runs, please run again for a successful connection. Jun 25, 02:58 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 25, 02:54 UTC Investigating - Due to continued reports of intermittent failures and a lack of sustained improvement while in monitoring status, this incident is elevated ba...
Supabase - Elevated errors on Postgres change subscriptions
Jun 25, 02:16 UTC Resolved - We have confirmed that the fix has been successfully applied and the issue affecting Postgres Change subscriptions has been resolved. We will continue to monitor the service, but all systems are operating normally at this time. Jun 25, 00:49 UTC Monitoring - We have applied a fix and are monitoring the results to ensure the issue is fully resolved. Jun 24, 23:58 UTC Identified - We have identified the cause of the elevated errors affecting Postgres change subscr...
Snyk laid off up to 30% of their staff today
Ex employee here and I’m hearing up to 30% of Snyk’s team was let go. All teams impacted. Leadership says it’s to pivot to AI security. This comes a day after their big Agentic Security announcement.   submitted by   /u/iamacheeto1 [link]   [comments]
Rippling - Issues loading parts of the Rippling app
Jun 24, 20:56 UTC Resolved - This incident has been resolved. Jun 24, 20:10 UTC Monitoring - We've made fixes to mitigate the issue and are monitoring the results. Jun 24, 19:31 UTC Update - Access to the site is back to normal, but we are continuing to investigate and address the root cause. Jun 24, 19:18 UTC Investigating - We are aware of issues with the Rippling app loading. Some parts of the Rippling app are degraded and not loading. We are investigating.
Sentry - Delayed Span ingestion, Replay ingestion, and Issue creation in our US region
Jun 24, 20:48 UTC Resolved - The issue in our US region has been resolved, and ingestion latency is back to normal. Jun 24, 19:53 UTC Monitoring - We have implemented a fix for the problem and are monitoring the situation. We are burning our US region ingestion backlog for replays, spans, and performance issues and will update here as the situation progresses. Jun 24, 18:52 UTC Identified - We have identified an issue in our US region causing delayed ingestion of spans and replays, as well ...
1Password - Restoring Access with a Recovery Code Is Failing for Some Users
Jun 24, 15:01 EDT Resolved - The issue is now resolved, and access to 1Password services should be fully restored. Jun 24, 14:51 EDT Monitoring - A fix has been implemented and we are monitoring the results. Jun 24, 14:35 EDT Identified - The issue has been identified and a fix is being implemented. Jun 24, 14:32 EDT Update - The investigation is ongoing. Our teams are actively working to determine the cause and will share updates as they become available. Jun 24, 13:50 EDT Update - The...
SendGrid - EU Regionalized Email Links Down
Jun 24, 11:54 PDT Resolved - Our engineers have monitored the fix and confirmed the issue with Click Tracked links from EU Regionalized Senders has been resolved. All services are now operating normally at this time. Jun 24, 11:19 PDT Monitoring - Our engineers have implemented a fix and are monitoring system performance. We will provide another update in 30 minutes or as soon as more information becomes available. Jun 24, 11:15 PDT Update - Our engineers have implemented a fix and are moni...
Cloudflare - Issues with granular roles for Cloudflare Tunnel and Mesh
Jun 24, 17:30 UTC Resolved - This incident has been resolved. Jun 24, 15:16 UTC Investigating - Cloudflare is investigating permission issues with resource-based granular roles where a subset of users are not being granted access to their scoped Cloudflare Tunnel and Cloudflare Mesh resources.This specifically impacts users attempting to view, configure, or manage individual Tunnel instances or Mesh nodes via the Cloudflare Dashboard or API when relying on resource-scoped policies. All accoun...
Snowflake - INC20000052
Jun 24, 17:22 UTC Resolved - Current status: We've implemented the fix for this issue and monitored the environment to confirm that service was restored. If you experience additional issues or have questions, please open a support case via Snowflake Community or the Support page in Snowsight.Customer experience: Customers hosted in the specified region may have been unable to access or use Snowflake services and features using Snowsight. A subset of affected users in the region may also have be...
Supabase - Degraded performance of the Shared Pooler cluster in ap-southeast-1
Jun 24, 16:14 UTC Resolved - One of the processes in the ap-southeast-1 Supavisor cluster became overloaded, causing difficulties in starting new pools.We restarted a node to stabilize the cluster and scaled the cluster up. The issue appears resolved. Jun 24, 15:59 UTC Investigating - We are aware of a period of degraded performance of the Shared Pooler cluster in ap-southeast-1. Affected projects experienced increased ECHECKOUTTIMEOUT errors when running queries.The window of the incident wa...
Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks
Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, and
Box - [Minor] Issues with Uploads
Jun 24, 05:33 PDT Resolved - This incident is now considered resolved. Box uploads have been restored to full functionality. Please contact Box Support at https://support.box.com/ if you continue to experience any issues. Jun 24, 05:18 PDT Investigating - We are investigating an ongoing issue affecting uploads. We will provide more information as soon as it is available.
DigitalOcean - SFO1 Network Maintenance
Jun 24, 12:30 UTC Completed - The scheduled maintenance has been completed. Jun 24, 09:30 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 22, 09:40 UTC Scheduled - Start: 2026-06-24 9:30 UTCEnd: 2026-06-24 12:30 UTCDuring the above window, our Networking team will be making changes to the core networking infrastructure to improve performance and scalability in the SFO1 region.Expected impact:These changes are designed and tested to...
Monday.com - Pricing page showing blank
Jun 24, 11:50 UTC Resolved - This incident has been resolved. Jun 24, 07:43 UTC Identified - We are currently investigating an issue where the Pricing Page shows a blank page when trying to pay for a plan from the trial-expired page. In the meantime, as a workaround, please go to "Invoice details" and enter your address.
Snowflake - INC20000047
Jun 24, 07:30 UTC Resolved - Current status: We've implemented the fix for this issue and monitored the environment to confirm that service was restored. If you experience additional issues or have questions, please open a support case via Snowflake Community or the Support page in Snowsight.Customer experience: Customers hosted in the specified region may have been intermittently unable to access or launch Streamlit apps, or may have experienced issues with other services and features that rel...
Cloudflare - ARN (Stockholm) on 2026-06-24
Jun 24, 05:00 UTC Completed - The scheduled maintenance has been completed. Jun 24, 00:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 19, 13:08 UTC Scheduled - We will be performing scheduled maintenance in ARN (Stockholm) datacenter on 2026-06-24 between 00:00 and 05:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users in...
Xero - Global: Bank Reconciliation - some customers are expecting an issue with reconciling
Jun 24, 04:37 UTC Resolved - Our team has resolved the issue impacting some customers trying to reconcile transactions in Xero. We apologise for any inconvenience this has caused. A product release caused this feature to become temporarily unavailable. Jun 24, 04:22 UTC Monitoring - Our team has implemented a fix and we are currently monitoring the results. Jun 24, 03:32 UTC Investigating - We are aware some customers trying to reconcile transactions in Xero are experiencing an error screen...
1Password - Device Trust Infrastructure Maintenance
Jun 23, 22:00 EDT Completed - The scheduled maintenance has been completed. Jun 23, 21:00 EDT In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 23, 19:14 EDT Scheduled - On June 24th, 2026, between 01:00 and 02:00 UTC, we will be conducting maintenance on our Device Trust infrastructure.During this maintenance window end-users who initiate a new authentication request via Device Trust may experience service degradation such as slowdowns ...
Vercel - Degraded Domain Search in Vercel Dashboard
Jun 23, 23:34 UTC Resolved - This incident has been resolved. Jun 23, 23:28 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 23, 23:26 UTC Identified - The issue has been identified and a fix is being implemented. Jun 23, 23:24 UTC Investigating - We're investigating an issue preventing customers from searching for and purchasing domains in the Vercel Dashboard.
GitHub - We are seeing elevated errors with Next Edit Suggestions and Completions
Jun 23, 23:29 UTC Resolved - This incident has been resolved. Thank you for your patience and understanding as we addressed this issue. A detailed root cause analysis will be shared as soon as it is available. Jun 23, 23:27 UTC Monitoring - The degradation has been mitigated. We are monitoring to ensure stability. Jun 23, 23:26 UTC Update - We have applied a rollback and are seeing recovery. Jun 23, 23:04 UTC Investigating - We are investigating reports of impacted performance for some Gi...
GCP - UPDATE: Network traffic to Google Cloud originating from Delhi, Chennai, Mumbai and surrounding areas is experiencing intermittent periods of elevated latency and possible packet loss.
Incident began at 2026-06-05 00:00 (all times are US/Pacific).Summary Network traffic to Google Cloud originating from Delhi, Chennai, Mumbai and surrounding areas is experiencing intermittent periods of elevated latency and possible packet loss. Description Traffic rerouting from the impacted Delhi facility has caused a subset of Hybrid Connectivity and Virtual Private Cloud (VPC) customers to experience intermittent latency spikes as demand exceeds regional capacity. Media CDN customers may a...
HubSpot - Some HubSpot tools may be unavailable for some users
Jun 23, 16:55 EDT Resolved - Between 03:48 PM (UTC -04:00) and 04:46 PM (UTC -04:00), many customers in all regions experienced issues with the Files tool. This was caused by a configuration issue. As of 04:46 PM (UTC -04:00), our Files tool is working properly and the incident has been fully resolved.HubSpot conducts a thorough review after each incident to understand the cause and prevent it from happening again. Learn more about HubSpot's commitment to reliability at www.HubSpot.com/relia...
CircleCI - Delays starting Docker jobs
Jun 23, 19:58 UTC Resolved - The issue where customers running Docker jobs experienced significant delays, with jobs stuck in a "preparing environment" state, has now been resolved. We thank you for your patience while our team worked on implementing a fix. Jun 23, 19:29 UTC Monitoring - What's happeningOur engineers have deployed a fix and we are observing the job backlog clearing. Docker jobs are now starting normally.What's impactedCustomers who submitted Docker jobs during the incident wi...
Supabase - Project create and unpause errors in eu-west-1
Jun 23, 16:32 UTC Resolved - Project create and unpause operations have returned to normal and remained stable for the past 30 minutes. Jun 23, 16:01 UTC Monitoring - Key updates and other mitigations have been fully deployed and project creation and unpause functionality is returning to normal. We will continue to monitor this region for stability for the next 30 minutes. Jun 23, 15:46 UTC Update - During this incident, postgres upgrade functionality has also been affected. The key updates...
Cloudflare - Network Performance Issues - Increased HTTP 5XX Errors in Ashburn, US
Jun 23, 16:00 UTC Resolved - Between 17:07 and 17:45 UTC, Cloudflare experienced network performance issues in the Ashburn, US region, resulting in an elevated rate of 5xx errors for a subset of traffic. During this time, impacted users may have encountered intermittent connectivity issues or unexpected server responses. The underlying issue was successfully mitigated, and all error rates have fully subsided. This incident has been resolved.
Zoom - Service Degradation Affecting Zoom Contact Center Services and Incorrect Offline Status Display for Zoom Rooms Scheduling in U.S Region.
Jun 23, 08:45 PDT Resolved - This incident has been resolved and the affected services have been restored. Jun 23, 00:43 PDT Update - The issue affecting Zoom Contact Center Services and Incorrect Offline Status Display for Zoom Rooms Scheduling in U.S region between 06:23 UTC to 06:44 UTC has been successfully resolved. Our team will continue to monitor the situation closely and keep you informed of any further developments. Jun 23, 00:10 PDT Monitoring - The issue affecting Zoom Contact C...
GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns
GitHub is moving to strengthen software supply chain security by updating "actions/checkout" to block pwn request attacks that exploit the risky use of the "pull_request_target workflow" trigger to run malicious code with the workflow's full privileges. Effective June 18, 2026, the latest version of "actions/checkout," the official GitHub action for checking out a repository into the
Supabase - Increased latency for Management API requests
Jun 23, 14:19 UTC Resolved - This incident has been resolved. Jun 23, 13:39 UTC Monitoring - Latency has returned to normal levels, and we are seeing greatly improved stability across the management API. We are monitoring for any further issues. Jun 23, 13:21 UTC Identified - We are seeing increased latency on management API requests, which results in slower-than-usual Dashboard performance, project creation and configuration changes may also be delayed. This is primarily affecting US-East-...
ActiveCampaign - Issues loading the Contacts and Deals main pages
Jun 23, 08:52 CDT Resolved - We believe this issue is resolved at this time. If customers are continuing to experience issues loading the pages in question, they should contact support. Jun 18, 18:19 CDT Monitoring - ActiveCampaign is experiencing a degradation of some parts of the platform Customers who are attempting to access the main Contacts or Deals pages may see the content fail to load. Other pages may also be impacted. This issue is due to a security issue impacting a third party dom...
Siemens Products using OpenSSL
View CSAF Summary OpenSSL has published a stack based buffer overflow vulnerability that allows a remote attacker to cause a denial of service (DoS) or potentially allow for remote code execution. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends specific countermeasures for prod...
Impact of Linux Kernel vulnerabilities on B&R products
View CSAF Summary B&R is aware of publicly reported vulnerabilities affecting the Linux kernel versions shipped with the products listed as affected in the advisory. Successful local exploitation of these vulnerabilities could allow an attacker to escalate privileges on the affected system. Public proof-of-concept exploits are available for the vulnerabilities described herein. At the time of publ...
Anthropic’s Fable 5 Model Jailbroken Within Days
Fable 5 is the supposed safe version of Anthropic’s Mythos Preview, with guardrails to ensure that it can’t be used to create cyberattacks. Well, that restriction was bypassed within days.
Cloudflare patches Copy-Fail across every server in two days
Kind of crazy to look at the graph in this blog. CVE drops on 04/29, they develop a patch on 4/30, and deploy it across all of their servers on 05/01. Obviously they have the engineers to write BPF-LSM patches, but I think it points to a future where they can (almost) keep up with vulnerability disclosures.   submitted by   /u/xmull1gan [link]   [comments]
Wix - RESOLVED: Issues with Stores Product Catalog
Jun 23, 09:56 UTC Resolved - This incident has been resolved. Jun 23, 09:51 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 23, 09:22 UTC Identified - We are continuing to investigate this issue related to Stores Products and Checkout. We have identified an issue with our DB, and are currently working on reverting the changes that caused it. Jun 23, 09:16 UTC Investigating - We are currently investigating this issue.
Cloudflare - EWR (Newark) on 2026-06-22
Jun 23, 09:00 UTC Completed - The scheduled maintenance has been completed. Jun 22, 01:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 19, 06:32 UTC Scheduled - We will be performing scheduled maintenance in EWR (Newark) datacenter between 2026-06-22 01:00 and 2026-06-23 09:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-use...
Cloudflare - MSP (Minneapolis) on 2026-06-23
Jun 23, 08:00 UTC Completed - The scheduled maintenance has been completed. Jun 23, 03:00 UTC In progress - Scheduled maintenance is currently in progress. We will provide updates as necessary. Jun 18, 18:30 UTC Scheduled - We will be performing scheduled maintenance in MSP (Minneapolis) datacenter on 2026-06-23 between 03:00 and 08:00 UTC.Traffic might be re-routed from this location, hence there is a possibility of a slight increase in latency during this maintenance window for end-users ...
OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defenders as part of the Daybreak initiative the artificial intelligence (AI) company announced last month. Calling GPT‑5.5‑Cyber its "strongest model yet for finding and helping patch software vulnerabilities," OpenAI said the model can "sustain deeper analysis across large codebases" to
Snowflake - INC20000046
Jun 23, 02:35 UTC Resolved - Current status: We've monitored the environment to confirm that reverting the configuration change restored service. If you experience additional issues or have questions, please open a support case via Snowflake Community or the Support page in Snowsight.Customer experience: Customers hosted in the specified region may have been unable to access Snowpark Container Services, and may have intermittently been unable to sign in to Snowsight. Affected users may have see...
Snowflake - AWS - US West (Oregon): INC0159680
Jun 23, 00:26 UTC Resolved - Current status: We've monitored the environment to confirm our actions have restored service. If you experience additional issues or have questions, please open a support case via Snowflake Community or the Support page in Snowsight.Customer experience: Customers hosted in the specified regions may have been unable to access or use multiple core Snowflake services and features, and may have experienced delays or failures with replication or when using Snowpipe to in...
Segment - (US West 2) Partial degradation of Linked Audiences, Linked Events, Reverse ETL, and Profile Sync due to external Snowflake Outage
Jun 22, 17:22 PDT Resolved - Snowflake outage has resolved and consequently impacted functionalities across segment have recovered as well. Jun 22, 15:14 PDT Identified - An ongoing upstream outage with Snowflake is causing degraded performance for Segment products that rely on customer data warehouses.- Impacted Products: Linked Audiences, Linked Events, Reverse ETL, and Profile Sync.- Current Status: Syncs and data processing may be failing.- Action Required: None. Data workflows will resum...
SendGrid - Marketing Campaign Data Delayed
Jun 22, 16:14 PDT Resolved - Our engineers have monitored the fix and confirmed the issue with Marketing Campaign data being delayed has been resolved. All services are now operating normally at this time. Jun 22, 16:03 PDT Monitoring - Our engineers have implemented a fix and are monitoring system performance. Some customers may continue to experience latency as processing queues are resolved. We'll continue to monitor and will provide another update in an hour or as soon as more information...
Datadog - Metrics Queries
Jun 22, 18:41 EDT Resolved - This incident has been resolved. Jun 22, 18:37 EDT Monitoring - A fix has been implemented and we are monitoring the results. Jun 22, 18:28 EDT Update - We are continuing to investigate this issue. Jun 22, 18:09 EDT Update - We are continuing to investigate this issue. Jun 22, 17:43 EDT Update - We are continuing to investigate this issue. Jun 22, 17:27 EDT Investigating - We are currently investigating elevated latency on metrics queries. We will provide ...
Cloudflare - Email Delivery Delays
Jun 22, 21:44 UTC Resolved - This incident has been resolved. Jun 22, 20:53 UTC Monitoring - A fix has been implemented and we are monitoring the results. Jun 22, 20:27 UTC Identified - The issue has been identified and a fix is being implemented. Jun 22, 20:27 UTC Investigating - Cloudflare is investigating a delay in our ability to send emails. This includes password reset, mFA token emails. We are working to resolve the issue. More updates to follow shortly.
Cloudflare - Increased Error Rates
Jun 22, 21:22 UTC Resolved - This incident has been resolved. Jun 22, 16:50 UTC Monitoring - Traffic engineering efforts have successfully mitigated the majority of congestion and packet drops. Jun 22, 16:30 UTC Update - Traffic engineering efforts have successfully mitigated the majority of congestion and packet drops. Services are largely stable, with only minor residual impact remaining. A small number of intermittent errors may still be observed for services with origins in North Americ...
Xero - NZ: Xero - some customers may have experienced issues accessing reporting and invoices in Xero.
Jun 22, 21:15 UTC Resolved - Our team has resolved the issue impacting some NZ customers trying to access reporting and invoices in Xero. We apologise for any inconvenience this has caused. Our technical team identified this was caused by poor network connectivity and restored service.
Monday.com - Investigating connectivity issues across accounts and devices
Jun 22, 20:15 UTC Resolved - This incident has been resolved. Jun 22, 14:31 UTC Investigating - We are currently investigating reports of connectivity issues across the platform. Our team is working to resolve this promptly.
Zoom - Service Degradation Affected Zoom Contact Center in the US Region.
Jun 22, 10:39 PDT Resolved - This incident has been resolved and the affected services have been restored. Jun 22, 10:22 PDT Monitoring - Between 14:46 and 16:54 UTC 06/22/2026, a subset of users may have experienced an issue connecting to Zoom Contact Center.This incident has been resolved, and the affected services have been restored.Our team will continue to monitor the situation closely and keep you informed of any further developments.
Zoom - Service Degradation Affecting ZoomMate and Zoom AI services in US Region.
Jun 22, 10:33 PDT Resolved - This incident has been resolved and the affected services have been restored. Jun 22, 09:56 PDT Monitoring - The service degradation affecting ZoomMate and Zoom AI services in the US Region has been successfully resolved. Our team will continue to monitor the situation closely and keep you informed of any further developments. Jun 22, 09:44 PDT Identified - We have successfully identified the root cause affecting ZoomMate and Zoom AI services in US Region. Our t...
Rippling - Rippling AI actions unavailable
Jun 22, 16:24 UTC Resolved - This incident has been resolved. Jun 22, 15:46 UTC Identified - Rippling AI actions are currently not working. The issue has been identified and a fix is being deployed.