Shortening the Let’s Encrypt Chain of Trust
When Let’s Encrypt first launched, we needed to ensure that our certificates were widely trusted. To that end, we arranged to have our intermediate...
Making the boat faster: Advantages of embedding services and training in software sales
Explore the advantages of embedding services and training in software sales and understand how it contributes to achieving sustainable growth. - Read more
ISRG’s 10th Anniversary
It’s hard to believe 10 years have passed since Eric Rescorla, Alex Halderman, Peter Eckersley and I founded ISRG as a nonprofit home...
Sensor Intel Series: Top CVEs in April 2023
A new vuln popped up in our traffic this month, as well as lots of the same old CVEs—IoT and Microsoft Exchange. - Read...
Improving Resiliency and Reliability for Let’s Encrypt with ARI
The Let’s Encrypt team is excited to announce that ACME Renewal Information (ARI) is live in production! ARI makes it possible for our subscribers...
Thank you to our 2023 renewing sponsors
At ISRG, we often say, “as a nonprofit, 100% of our funding comes from charitable contributions.” But what does that actually look like? For...
A Look into the Engineering Culture at ISRG
Engineers design systems and processes to ensure high quality outcomes and solutions - what if the same lens could be used to build a...
Let’s Encrypt improves how we manage OCSP responses
Let’s Encrypt has improved how we manage Online Certificate Status Protocol (OCSP) responses by deploying Redis and generating responses on-demand rather than pre-generating them,...
A Year-End Letter from our Executive Director
This letter was originally published in our 2022 annual report.
The past year at ISRG has been a great one and I couldn’t be more...
The art of the possible: Arming U.S. Veterans with knowledge
Elastic can help us understand the data that impacts our daily lives and guides our decisions. Learn how one Elastic employee transformed data into...
Latest article
CVE-2026-41940: cPanel & WHM Authentication Bypass
OverviewOn April 28, 2026, cPanel issued a security update to fix a critical vulnerability affecting the cPanel & WHM and WP Squared products. In...
Cursor Extension Flaw Exposes Developer API Keys
Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX - Read more
CVE-2026-21246 Windows Graphics Component Elevation of Privilege Vulnerability
Acknowledgement added. This is an informational change only. - Read more
ClickUp Data Leak Exposes Enterprise Emails for Over a Year
A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security concerns.
The post ClickUp Data...
