CrowdSec

CrowdSec enhances DevSecOps with behavior-based runtime detection and early edge filtering. It blocks known-bad traffic before it hits your apps, reduces alert noise, and enforces protection through the infrastructure you already use, all without adding friction to CI/CD or slowing delivery. Learn more 👉https://lnkd.in/dKEwVXdk #devsecops #secops #cybersecurity

Happy Holidays from the Alpaca Crew! 🦙💚 😅 This year, we had no time for a real alpaca photoshoot… so here’s our AI-generated friend instead! We hope you get some rest, enjoy time with your loved ones, and feel good knowing our growing community is keeping you protected. Safer together! 🫶

In cybersecurity, knowing what you’ve blocked and how effective your defenses are is what really matters. With Remediation Metrics in the CrowdSec Console, get clear visibility into the attacks detected and remediated across your infrastructure. 👉 Learn more: https://lnkd.in/gH8nZu8Q #remediationmetrics #threatvisibility #securityanalytics #cybersecurity

How do you stop malicious traffic before it becomes an incident? ⚠️ In this webinar replay, Sophos and CrowdSec show how combining Active Threat Response with real-time, community-powered intelligence helps teams block threats earlier, reduce noise, and save time. 👉 Watch to see how the integration works in practice: https://lnkd.in/g4Rrt3fp #ActiveThreatResponse #ThreatIntelligence #cybersecurity #event #webinar

🚨 In this week’s newsletter, we dive into CVE-2025-59718, a critical Fortinet authentication bypass vulnerability now showing early signs of exploitation. We break down how attackers are probing vulnerable Fortinet instances, why this flaw is being treated as a “skeleton key” for enterprise networks, and what defenders should do before exploitation ramps up. 👇 Read the newsletter for full details and learn how to protect your systems. Be sure to like and share this post to help keep your network informed. #CVE #CVE202559718 #threatalert #Fortinet #threatintel #cybersecurity

🎄 Calendrier de l'Avent - Jour 19 Pour ce vendredi soir, parlons sécurité. 𝗖𝗿𝗼𝘄𝗱𝗦𝗲𝗰, c'est le successeur moderne de Fail2Ban, mais avec une dimension communautaire vraiment cool (c'est le "Waze" de la cybersécurité). Et en plus, c'est une pépite French Tech 🇫🇷 ! Je le suis (et l'utilise) depuis les premières versions, et il ne cesse d'évoluer, tout comme sa communauté. L'intérêt de CrowdSec : détecter et bloquer les adresses IP malveillantes, selon différents scénarios de détection adaptés à une multitude de services (et d'OS). Il est compatible Windows et Linux, il y a un plugin OPNsense, etc. 🌟 L'aspect collaboratif est important : chaque instance CrowdSec partage ses signaux à la communauté. Donc, une adresse IP agressive sur plusieurs serveurs sera bannie par l'ensemble des instances CrowdSec, grâce à la blacklist partagée entre les instances. 🛡️ Vous bloquez l'adresse IP malveillante avant même qu'elle ait l'occasion d'attaquer votre serveur. 🚀 Le module AppSec permet d'aller encore plus loin en ajoutant la fonction de WAF à votre CrowdSec, de quoi détecter et bloquer les attaques Web. Un exemple en lien avec l'actu récente : une règle Virtual Patching pour bloquer l'exploitation de la faille React2Shell. 👉 Quelques liens utiles : - Le GitHub de CrowdSec : https://lnkd.in/eXfwEnPP - Ma vidéo Traefik + CrowdSec (elle montre un bon aperçu des capacités de CrowdSec) : https://lnkd.in/eA4Sn6Bv Pensez à me suivre pour ne pas manquer la suite de ce Calendrier de l'Avent. 😊 #CalendrierITCO #CrowdSec #infosec #cybersecurite

CrowdSec’s Central API (CAPI) is a shared service used by all Security Engines. As usage grows, we’ve introduced rate limiting to keep CAPI reliable and responsive for everyone. 🔹 Why it matters - Prevents misconfigured or broken setups from generating excessive traffic - Ensures fair access to shared resources - Improves overall stability and performance 🔹 Who’s impacted? - Normal and well-managed deployments: no change - Only outlier behaviors (restart loops, aggressive retries, shared credentials at scale) may be affected If thresholds are exceeded, a temporary ban may apply to stop runaway traffic and allow time to fix the issue. 👉 Read the full article to understand how it works: https://lnkd.in/dxrEd8ts

Managing a WAF for hundreds of tenants? CrowdSec makes it easy. Dynamic, per-request rule control keeps a single shared WAF layer flexible, reduces alerts, and makes SecOps more manageable with no reloads required. See how ScaleCommerce GmbH did it in our latest use case ➡️ https://lnkd.in/gXXeCffM #WAF #webapplicationfirewall #secops

We’re just 1 day away from our December Community Office Hours! Join us tomorrow at 5 PM CET as we explore how to integrate CrowdSec into your DevSecOps workflows. Bring your questions, exchange with the team, and connect with the community one last time before the year is over. 👉 Save your spot: https://lnkd.in/dCXd2gKy #community #webinar #event #devsecops #secops

This milestone belongs to our community. 🤝 100,000 CrowdSec Console users sharing signals, stopping attacks, and proving that security works better together. Thank you for being part of the journey 💙 #community #cybersecurity #threatintelligence