Welcome to the CrowdSec Blog

Brute force attacks are the most prevalent way to exploit the Looney Tunables vulnerability in your system. Here’s how to get notified of such attempts.

Follow our journey and learn how to address the security aspects of Continuous Deployment while minimizing the risk of compromise.

Bayesian reasoning has applications in cybersecurity and the detection of malicious behavior. Learn how the Bayesian bucket works and how to use it.

We report on the Netgear RCE, provide data on the exploit, show how the exploit works in practice, and speculate on vulnerability still persist in the wild.

Understanding the triggers behind a security alert is crucial for smooth security operations and simplifying threat detection.

Highlights from Black Hat USA 23 & DEF CON 31 include the critical role of cybersecurity professionals in AI policymaking and the need for global collaboration.

Follow this walkthrough and learn how to levarage real-ime Decision Management and manage ingress traffic for a fleet of servers.

Learn how CrowdSec detects VPN and proxies using machine learning models and leveraging attack patterns exposed by IPs to improve detection.

CrowdSec will be at Black Hat USA and DEFCON 2023. Join us to learn more about how CrowdSec is shaping the future of proactive and collaborative cybersecurity.

We are thrilled to announce the release of the CrowdSec Majority Report for Q2 2023, where we are exploring cyber threat trends worldwide.

The new regulation on Network and Information Security (NIS2) enacts stricter, GDPR-like, regulations on cybersecurity. Learn how you can prepare.

Safeguard your Kubernetes infrastructure against potential threats by monitoring Kubernetes audit logs using the CrowdSec Security Engine.

Learn how to use the combined strength of community-driven threat intelligence and innovative machine learning threat prevention to analyze attack behaviors.

Learn how to detect impossible travel and other suspicious IP behaviors using the conditional bucket feature in CrowdSec Security Engine 1.5.

Learn how to detect brute force and other security incidents on the AWS Console using AWS CloudTrail and the CrowdSec Security Engine.

Learn how to detect successful SSH brute force attacks and other advanced behaviors using the conditional bucket feature in CrowdSec Security Engine 1.5.

We’re updating the various components of the CrowdSec ecosystem to be in line with what SecOps and cybersecurity professionals are used to seeing day-to-day.

The biggest release since 1.0, CrowdSec Security Engine 1.5 brings you new features, major enhancements, and more control of your security management. Discover all that is new in 1.5 and how to get started in this article.

CrowdSec exhibited at FIC Lille this year, an event that hosts over 19,000 end customers, service providers, government agencies, students, and more for discussions centered around digital security. Get the inside scoop on our participation there and the outcome of such a big event.

In Part 2 of ‘Building a Network for Smaller Businesses,” Peter will dive into running configurations on the firewall, with explanations of the design decision made for each service and going through each service one by one. Using this guide, anyone with basic networking knowledge can replicate this setup. 

Our work on CrowdSec 1.5 (our latest release that will be available in the summer of this year) has allowed us to achieve much faster response times when processing high volumes of logs, while significantly reducing the amount of processing power needed. See our benchmarking tests and get a closer look at the results!

CrowdSec 1.5 is the biggest version since 1.0 with plenty of new features, capabilities, and more! Take a look at what we have in store and be one of the first to test it out before we officially launch it this summer.

Follow this guide to learn how to secure your self-hosted Supabase deployment via docker-compose using CrowdSec for enhanced protection, detection of sophisticated attacks and capabilities to integrate in cloud-native workflows. 

CrowdSec joins the Google for Startups Growth Academy: Cybersecurity and will participate in the three-month program to gain skills to grow to help combat cybercrime through collaborative threat intelligence and open security.

Read Peter’s thesis on how to build, test, and secure networks with CrowdSec for small businesses so they can achieve a more affordable firewall and router combination. 

Discover the new CrowdSec Community API Key that allows you to query our global CTI database. You will be able to get insights about an IP’s malicious activity detected by our network, but this time with other tools outside of the CrowdSec Console. Enrich your prevention or forensics analysis with CrowdSec’s Cyber Threat Intelligence.

All users on the CrowdSec Console can now subscribe their instances to third-party blocklists cherry-picked by our expert team. With these 14 blocklists, including 3 premium ones, you can secure your systems against VoIP fraud, botnets, and more.