A Year-End Letter from our Vice President
This letter was originally published in our 2023 Annual Report.
We typically open our annual report with a letter from our Executive Director and...
Our role in supporting the nonprofit ecosystem
For more than ten years, we at the nonprofit Internet Security Research Group (ISRG) have been focused on our mission of building a more...
Evolution of Workplace Search: Search your private data with Elasticsearch
Workplace Search functionality will merge with Elastic Search in the future. Here’s what you need to know. - Read more
Increase your security governance with CAA
According to Cloudflare’s Merkle Town, 257,036 certificates are issued every hour. We at Let’s Encrypt are issuing close to 70% of those certs. Being...
Shortening the Let’s Encrypt Chain of Trust
When Let’s Encrypt first launched, we needed to ensure that our certificates were widely trusted. To that end, we arranged to have our intermediate...
Making the boat faster: Advantages of embedding services and training in software sales
Explore the advantages of embedding services and training in software sales and understand how it contributes to achieving sustainable growth. - Read more
ISRG’s 10th Anniversary
It’s hard to believe 10 years have passed since Eric Rescorla, Alex Halderman, Peter Eckersley and I founded ISRG as a nonprofit home...
Sensor Intel Series: Top CVEs in April 2023
A new vuln popped up in our traffic this month, as well as lots of the same old CVEs—IoT and Microsoft Exchange. - Read...
Improving Resiliency and Reliability for Let’s Encrypt with ARI
The Let’s Encrypt team is excited to announce that ACME Renewal Information (ARI) is live in production! ARI makes it possible for our subscribers...
The Bleak Reality and Hopeful Future of Security Automation
Security automation continues to be an enticing capability for security programs and while it delivers on many promises, it does not fully deliver the...
Latest article
Sysco – 2,691,852 breached accounts
In June 2026, the food distribution company Sysco was targeted by a ShinyHunters "pay or leak" extortion campaign. Data was subsequently published containing 2.7M...
CVE-2023-6606 Kernel: out-of-bounds read vulnerability in smbcalcsize
Information published. - Read more
Anthropic Confirms Claude Mythos 5 Redeployment for US Critical Infrastructure Organizations
Anthropic has confirmed that Claude Mythos 5, its most powerful AI cybersecurity model, will be redeployed to a select set of U.S. organizations responsible...
Chromium: CVE-2026-13027 Use after free in FileSystem
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see (https://chromereleases.googleblog.com/2025) for more information. - Read...
