List of IP addresses exploiting the #log4j#CVE-2021-44228 vulnerability, as reported by our network. (Updated several time/day).
Courtesy of the CrowdSec community. gist.github.com/blotus/f87ed…
Stay safe.
CrowdSec, the crowd-powered and open-source #cybersecurity solution. Join the community and protect your assets and peers by leveraging unmatched behavior & reputation engines. Let’s have each other’s backs and make the Internet safer together.
#infosecurity#opensource#linux
You can find the list generated by our network of users here. Thank you dear community, #log4j is a brilliant illustration of "Crowd powered actionable threat intelligence" : gist.github.com/blotus/f87ed…
For CrowdSec users we have released a scenario for detecting attempts to exploit the new log4j vulnerability CVE-2021-44228. Get it while it's hot!
hub.crowdsec.net/author/crow…
Proud to announce a €14M Series A round led by @SupernovaInvest and joined by @BreegaVC. This is a big step forward in our goal of combating cybercrime and positioning ourselves as the world’s largest crowdsourced CTI network 🚀
👉 crowdsec.net/blog/crowdsec-a…#CyberSecurity
The CrowdSec web console, although still in beta, is now available to all. And it comes with a brand new feature: the visualizer 📡
Take a quick video tour below to discover its next-level observability capabilities.
Wanna sign up? 👉 crowdsec.net/crowdsec-consol…#infosec#opensource
🎉 We're happy to announce that CrowdSec is now an official @opnsense partner! 🎉
The CrowdSec #opensource port allows users to integrate its community-generated IP blocking lists with OPNsense's firewall and set up new firewall rules.
Read More 👉 crowdsec.net/blog/crowdsec-b…
Today is a big day for us! 🚀 We're launching CrowdSec Console, a web app to visualize cyber threats and alerts on your CrowdSec machines, on Product Hunt!
Feel free to upvote the product and leave us feedback:
👉 producthunt.com/posts/the-cr…
Thank you for being part of our community!
🎉 Yesterday, our community shared 1+ MILLION signals! 🎉 On one single day!
The detection capabilities of CrowdSec are now growing exponentially. Our users exchange threat signal data with each other daily, generating the greatest CTI network. 🚀🚀🚀
Join Us!
#CyberSecurity
🚨🪟 We’ve released an ALPHA version of our Windows port! It comes with a few #Windows-specific collections and a Windows Firewall bouncer.
Check out the documentation on how to get started: docs.crowdsec.net/docs/next/…
Feel free to share your feedback on Discord or in GitHub Issues.
Our real-time #log4j global threat tracker is OUT!
- Visualize critical data
- Find out more about attackers
- Access our list of spotted IPs trying to exploit the vulnerability
Thank you dear community, you ROCK!
➡️Full report here: crowdsec.net/log4j-tracker/#log4jRCE#log4jshell
The CrowdSec plugin for @opnsense is available in public Beta!
Read this tutorial to learn how to install & enable it to protect your OPNsense machines 👇👇👇
crowdsec.net/blog/crowdsec-a…
🎓We are excited to announce the launch of the #CrowdSecAcademy!
📚Your go-to online platform for comprehensive #cybersecurity resources! Gain mastery of our #opensource Security Engine, earn certifications & more.
Welcome to the CrowdSec academy! academy.crowdsec.net/
Dear community, about the #log4j#log4j2#CVE-2021-44228 vulnerability: Those IP addresses are actively scanning the vulnerability (if you use CrowdSec, they are sent to you to block them):
139.59.97.205
178.176.203.190
139.59.108.31
175.6.210.66
138.197.72.76
162.255.202.246
We are proud to welcome Gilles Babinet (@babgi), co-President of the French National Digital Council @CNNum and EU Digital Champion for France, as a CrowdSec board member.
Onwards!
crowdsec.net/2021/05/11/gill…
CrowdSec, the next-gen community-powered and open source #cybersecurity solution. Protect yourself and your peers using our unmatched behavior & reputation engines. Let’s have each other’s back.
Let’s make the Internet safer together.
#opensource#infosec#infosecurity#Security
🚀We are thrilled to announce the launch of CrowdSec Engine 1.5!
This new version improves automation and reduces processing time by 300%😎
Discover more about new and enhanced capabilities here!👉 crowdsec.net/blog/crowdsec-e…#cybersecurity#infosec
We've just released CrowdSec 1.4! It comes with plenty of important updates:
🪟 Windows support
⚙️ Easier configuration management
🪄 Support for client authentication via certificates
😎 Dynamic decision time
✔️ Improved support for #IPv6
Read more here: crowdsec.net/blog/crowdsec-1…
🚀 The CrowdSec team gathered together for a week full of workshops, brainstorming, and of course, plays and tons of fun.
🦙Today we went to an alpaca farm to hang out with these cute creatures which inspired CrowdSec’s identity.
How many alpacas do you see on this picture? 😃
🏆 We did it! 🏆
CrowdSec Console finished #3 product of the day on @ProductHunt with 580 votes and hundreds of comments!
Thank you to our fantastic community for supporting us during the 24h voting cycle and throughout our journey to outnumber cybercriminals!
You're awesome!🥳
All companies will keep being hacked regardless of their security budgets. A new approach is needed. For our first guest blog post, @mikko reflects on how collaboration could be the key to solving the hacking global issue.
crowdsec.net/2021/07/12/coll…#opensource#infosec#Linux
The new version of the CrowdSec @nginx bouncer is out! It comes with stream mode support, reCAPTCHA v2, and more.
Read our latest blog post for the full list of new features and how-to install tutorial 👇👇👇
crowdsec.net/blog/nginx-boun…
We created a scenario to detect and block Log4j exploitation attempts using our open-source IPS. You can block an attempt in 1 minute. hub.crowdsec.net/author/crow…
CrowdSec was named among the best open-source #cybersecurity tools to build your startup.
As a free & collaborative IPS, CrowdSec provides a strong first line of defense, crucial for any startup.
Thanks for mentioning, @Scaleway 😍
blog.scaleway.com/40-open-so…
🚀Over this year, CrowdSec blocked 1+ MILLION malicious IPs. And is now used in 120+ countries and 2K+ locations.🥳
We thank our community of #opensource enthusiasts and inspired #CyberSecurity professionals for being here with us, outnumbering cybercriminals together!💪
📣CrowdSec Console 1.4.4 is out!
⭐ Check out our brand new IP search bar if you want insights on:
✅The type of attack the #IP is known for.
✅Background noise score.
✅#Attack details.
✅Aggressiveness.
✅Top targeted countries.
piped.video/2fgPaeGcZJY#ThreatIntelligence
We have also released a scenario for detecting attempts to exploit the new #log4j vulnerability CVE-2021-44228. You can download it here: hub.crowdsec.net/author/crow…
After the attack on some of my web services a few weeks ago, I decided to give @Crowd_Security a test drive on my @traefik proxy to add another layer of security. This might be a modern alternative to fail2ban...
piped.video/watch?v=-GxUP6bN…
I love #CrowdSec! It's such a clever way to add another layer of security to your #Linux server. I decided to do a follow-up/updated video on it since I've been using it for a while. Check it out! piped.video/WXHQY90Ms-g@Crowd_Security
🚀 We're thrilled to announce the launch of our new website! ❤️🔥
✔️ Discover our crowd-based #cybersecurity suite
✔️ Find valuable resources
✔️ Learn about our partners
✔️ Find out about the ambassador program
Check it out at 👉 crowdsec.net
Let us know what you think!
🔔Huge News! We've just released a Professional Plan for CrowdSec Console!
It comes with:
👉 Extended data retention for your cyber threats
👉 Multi-user support
👉 500 IP intelligence requests per day
👉 Dedicated support service
Get started for free 👉 app.crowdsec.net/?mtm_campai…
2 months ago, we celebrated our first 1000 Console Users. Today we reached 2000 users! 🥳🥳
With the Console, you can get an instant overview of any suspicious activity on your servers, deep dive into alerts, navigate in time, filter everything!
Sign up: app.crowdsec.net/product-tou…
We are recruiting to support our growth. Want to join our gang and help us reshape #CyberSecurity? Our current job openings are right below:
👉 Software packager
👉 Web developer
👉 DevSecOps (internship)
crowdsec.net/jobs/#opensource#Linux
✨CrowdSec Console Update✨
You asked for it and we did it! Now it’s really easy to validate many pending requests of enrolled instances. And when you have a huge stack, it saves a lot of time! 😉
Create your free account 👉 app.crowdsec.net/
Brute force attacks are the most prevalent way to exploit the #LooneyTunables#vulnerability in your system. In this detailed tutorial, we show you how to use the new CrowdSec scenarios to detect exploitation attempts.
hubs.ly/Q024v5lp0
You asked for it, and here it is!💥
You can now integrate CrowdSec with firewall appliances using a mirror of our community blocklists!
Check out this tutorial to learn how on the example of the #Fortinet#firewall:
👇👇👇
crowdsec.net/blog/integratin…
🌍🦙We're hiring technical support specialists passionate about #cybersecurity!
CrowdSec is looking for technically skilled candidates with excellent troubleshooting skills to become CrowdSec gurus for our users and join our alpaca family.
Find out more 👉 crowdsec.net/join-our-team/
🔔▶️ Catch the replay of our first online meetup with @Traefik on how to integrate CrowdSec into your #Kubernetes cluster with Traefik as an ingress controller to detect and remediate security threats.
Find the replay at 👉 piped.video/watch?v=LSbB19Va…#CyberSecurity#k8s
🍓 Secure your @Raspberry_Pi server with CrowdSec!
Easily install CrowdSec on your Raspberry with precompiled packages. On top of the first layer of defense, turn your server into a #honeypot and share malicious IPs with the community!
Learn more 👉 crowdsec.net/blog/how-to-sec…
We're thrilled to share that the CrowdSec console has reached the 1000-user milestone!
With the Console, you can visualize all instances in 1 place, dig deeper into your alert data, track your threats, and more! New features are underway too.
Sign up here app.crowdsec.net/product-tou…
Analyze your servers' cold logs to check if the #log4j vulnerability (CVE-2021-44228) was exploited and when by using the appropriate scenario and the below command line:
Registration to our first community webinar is now open! This webinar will walk you through the opportunities you have within our global #cybersecurity community, including our Ambassador Program.
Join us to learn more 👇👇👇 app.livestorm.co/crowdsec/cr…#cybersecuritywebinar
💥💥 CrowdSec new documentation is out!
➡️ new landing page
➡️ enhanced user journey
➡️ more sections
➡️ search bar on its way
Hope you will like it. Don't hesitate to share your feedback, it means the world to us!
👉 doc.crowdsec.net/
Here we are, at @BlackHatEvents London 🎩🇬🇧.
Ready to tell you everything about collaborative security and our open-source & participative IPS.
Don't miss the CrowdSec DEMO sessions:
🎙️Today at 3:40PM (Arsenal station 4)
🎙️ Tomorrow at 11AM (Arsenal station 2)
We have a lot planned at @BlackHatEvents this year. Stay tuned as we will stream live our alpaca adventures at — and around — the Las Vegas Strip with our friends from @ITSPmagazine. If our CEO gets arrested, it will be shared. That's what we do!
#BHUSAitspmagazine.com/black-hat-2…
You can get protected against the recent #ProxyNotShell vulnerability on Microsoft Exchange with CrowdSec. We have made available a new scenario to detect CVE-2022-41082. Just update your HTTP-CVE collection or install the IIS collection separately.
hub.crowdsec.net/author/crow…
CrowdSec v1.2.2 is out! 💥
✔️ New cscli decisions import command to import an IP-list from JSON or CSV
✔️ Docker data source to directly read logs from a docker container
Learn more in the changelog here👇github.com/crowdsecurity/cro…
The Log4Shell vulnerability continues the make its way through the news, and in today's video, I'll give you some info about it, and also talk about one of the ways #CrowdSec is handling this. piped.video/ZWHCKkA-i9k
Happy Alpacalloween!
Which spooky alpaca is your favourite? Comment or retweet: 🎃jack-o-paca➡️🪓serial alpakiller➡️ 🃏 al-joker ➡️👻al-booo-paca
#Halloween#spooky#alpaca
Last week at @OSXP_Paris, we were asked if our product was really #OpenSource. Well, yes.
Under the MIT license, CrowdSec’s (IDS & IPS) solution is free & open source. You can test it by downloading it from GitHub: lnkd.in/eh4JYAeG or Packagecloud: lnkd.in/efMrRZjJ
Quick guide on 💡How to install and configure CrowdSec on #OPNsense!
👉 bit.ly/3IALCv7
The open-source plugin enables the configuration of rules at the OPNsense #firewall level using #CrowdSec's shared list of blocked IP addresses🙅♀️
Safer together! 🤝
#OPNsense business edition 21.10.2 has been released. New Apache-based plugin with WAF capability and Let's Encrypt single-click support. forum.opnsense.org/index.php…
🎙️Don’t miss the latest video by @eddiejaoude “Secure your #server with @Crowd_Security - the #OpenSource crowdsourcing tool”.
He covers:
✔ How to install and setup
✔ Dashboard of security alerts
✔ Latest features in v1.5
➕ While doing an overview of the CrowdSec Security Engine, the Console, and the CTI.
Check it out! piped.video/watch?v=426FgRC2…
This is the CrowdSec team, security enthusiasts and professionals working together to reshape #cybersecurity. We’re spread all over the globe but this week we met in Spain to work, play and brainstorm together. Meaning, more innovation and protection to come! 💪
Dear community, you are now using CrowdSec in 100+ countries and 1200+ locations.
👉 Top 3: 🇺🇸🇫🇷🇩🇪
👉 Latest newcomers: 🇬🇭🇼🇫🇰🇳
You also blocked 500,000+ malicious IPs by collaborating together. Onwards and upwards! 🚀
github.com/crowdsecurity/cro…#CyberSecurity#Opensource#Infosec