Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
All Changes

EU Regulatory Changes

1668 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
BREACH 22 May 2026 ransomwarelive
Ransomware: thegentlemen claims YMCA of Columbia (US) — Consumer Services
BREACH 22 May 2026 ransomwarelive
Ransomware: thegentlemen claims MBM Corp (US) — Not Found
BREACH 22 May 2026 ransomwarelive
Ransomware: thegentlemen claims Grupo Pasquel (EC) — Agriculture and Food Production
BREACH 22 May 2026 ransomwarelive
Ransomware: shadowbyt3$ claims Hotelogix Company (Hotelogix.com) (IN) — Hospitality and Tourism
BREACH 22 May 2026 ransomwarelive
Ransomware: nova claims Softseba — Technology
BREACH 22 May 2026 ransomwarelive
Ransomware: nova claims Neubox — Technology
CVE 22 May 2026 nvd
CVE-2026-8631 (CVSS 9.8) — A potential security vulnerability has been identified in the HP Linux Imaging and Printin...
CVE 22 May 2026 nvd
CVE-2026-6279 (CVSS 9.8) — The Avada Builder (fusion-builder) plugin for WordPress is vulnerable to Unauthenticated R...
CVE 22 May 2026 nvd
CVE-2026-4858 (CVSS 8.0) — Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11...
CVE 22 May 2026 nvd
CVE-2026-5118 (CVSS 9.8) — The Divi Form Builder plugin for WordPress is vulnerable to privilege escalation in versio...
CVE 22 May 2026 nvd
CVE-2026-6960 (CVSS 9.8) — The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file uploads due to m...
CVE 22 May 2026 kev
KEV: CVE-2025-34291 — Langflow Langflow (Langflow Origin Validation Error Vulnerability)
CVE 22 May 2026 kev
KEV: CVE-2026-34926 — Trend Micro Apex One (Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability)
CVE 22 May 2026 nvd
CVE-2026-3593 (CVSS 7.4) — A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. This issue...
DORA 22 May 2026 cellar
CELEX:32024R1401R(01)
AI_SAFETY 21 May 2026 arxiv_cscr
arXiv: VIPER-MCP: Detecting and Exploiting Taint-Style Vulnerabilities in Model Context Protocol Servers
This publication, titled VIPER-MCP, presents a new methodology for detecting and exploiting taint-style vulnerabilities within Model Context Protocol (MCP) servers. MCP is an emerging standard that...
Read analysis →
AI_SAFETY 21 May 2026 arxiv_cscr
arXiv: Auditing Apple's DifferentialPrivacy.framework: Implementation Bugs, Misconfigurations, and Practical Risks
A new academic paper published on arXiv on May 20, 2026, presents an audit of Apple’s DifferentialPrivacy.framework, revealing implementation bugs, misconfigurations, and practical risks that under...
Read analysis →
AI_SAFETY 21 May 2026 arxiv_cscr
arXiv: Onion-Routed Multi-Circuit Key Establishment for Quantum-Resilient Sessions
This publication from arXiv, dated May 2026, presents a technical proposal for a new cryptographic protocol called "Onion-Routed Multi-Circuit Key Establishment." The paper outlines a method for es...
Read analysis →
AI_SAFETY 21 May 2026 arxiv_cscr
arXiv: Profiling User Vulnerability to Phishing Through Psychological and Behavioral Factors
This publication from arXiv, dated May 20, 2026, presents a research paper that profiles user vulnerability to phishing by analyzing psychological and behavioral factors. While not a regulatory cha...
Read analysis →
AI_SAFETY 21 May 2026 arxiv_cscr
arXiv: Information Leakage Envelopes
A new preprint from arXiv, titled "Information Leakage Envelopes," introduces a formal method for quantifying and bounding the unintended disclosure of sensitive information by AI systems during in...
Read analysis →