Welcome to the CrowdSec Blog

Discover 5 common cybersecurity myths that increase risk, from “we’re too small” to CVSS blind spots. Learn what really reduces exposure.

Threat intelligence isn’t equal. Learn why real-world production telemetry reveals attacker intent, and why CISOs trust it over honeypot-based intel.

React2Shell (CVE-2025-55182) is a critical RCE vulnerability impacting React Server Components and Next.js. Learn how CrowdSec mitigates it fast.

To keep CrowdSec’s Central API (CAPI) reliable as usage continues to grow, we’ve introduced rate limiting. This change helps prevent misconfigured or broken deployments from generating excessive traffic, ensuring fair access and consistent performance for everyone.

Discover how ScaleCommerce built true multi-tenant WAF management with CrowdSec, enabling dynamic per-tenant rule control without reloads or configuration sprawl.

Learn how to secure Kubernetes ingress with Traefik & CrowdSec. Enable open-source WAF, virtual patching, & DevSecOps-friendly protection for web-native workloads.

CrowdSec enhances DevSecOps with behavior-based detection and edge filtering. Strengthen security without slowing pipelines.

A behind-the-scenes look at why we replaced a clever but over-engineered SPOA architecture with a simple, reliable single-listener design backed by goroutines.

CrowdSec partners with OpenClassrooms to deliver accessible, hands-on cybersecurity education.

Stop attacks before they reach your apps on Upsun with a drop-in CrowdSec project blocking bad actors at the edge.

Protect your LAMP stack with open source WAFs. Learn how CrowdSec and ModSecurity block SQL injections, XSS, bots, and more.

Discover how the Drupal Association and CrowdSec are partnering to bring community-powered, adaptive protection to Drupal sites.

Secure apps with CrowdSec WAF: start with virtual patching, extend with CRS, add custom rules, and scale to enterprise protection.

Discover how CrowdSec Remediation Metrics turn blocked attacks into actionable insights, optimized defenses, & demonstrate measurable results.

Block 75% of malicious traffic before it ever reaches your server with CrowdSec’s open source web application firewall.

Introducing our new CVE Explorer. Learn what it is and how it can help your organization prioritize threats and vulnerabilities.

Discover how users around the world are deploying CrowdSec WAF across Kubernetes, cloud, and on-prem environments.

Host secure tunnels with Pangolin, a privacy-first alternative to Cloudflare Tunnels, now integrated with CrowdSec for enhanced protection.

CrowdSec’s new Education and Public Sector Blocklists deliver proactive cybersecurity powered by real-world attack data & AI insights.

Protect your apps with a modern, open-source WAF that adapts in real time using behavior-driven detection and global threat intelligence.

Discover how CrowdSec and Filigran’s partnership delivers real-time threat intelligence, streamlined triage, and automated threat enforcement.