Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
All Changes

EU Regulatory Changes

782 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
CVE 29 May 2026 nvd
CVE-2026-24444 (CVSS 9.8) — SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9_B9 contain a ha...
A critical vulnerability has been published under CVE-2026-24444, affecting SDMC NE6037 cable modem routers running firmware versions 7.1.6.0.25 and 7.1.6.1.9_B9. The issue involves a hardcoded pas...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-34311 (CVSS 9.8) — Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospi...
A critical vulnerability has been published under CVE-2026-34311, affecting Oracle Hospitality OPERA 5 Property Services, specifically versions 5.6.19.24, 5.6.22, and 5.6.25.19. The vulnerability c...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46775 (CVSS 9.9) — Vulnerability in Oracle REST Data Services (component: Core). Supported versions that ar...
A critical vulnerability has been published under CVE-2026-46775, affecting Oracle REST Data Services in versions 24.2.0 through 26.1.0. The flaw, rated 9.9 on the CVSS scale, is easily exploitable...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46817 (CVSS 9.8) — Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File ...
A critical vulnerability has been published under CVE-2026-46817, affecting the Oracle Payments component of Oracle E-Business Suite, specifically versions 12.2.3 through 12.2.15. The flaw, rated 9...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46819 (CVSS 9.1) — Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business S...
A critical vulnerability, CVE-2026-46819, has been published with a CVSS score of 9.1, affecting the Oracle Internet Procurement Connector within Oracle E-Business Suite. The flaw resides in the In...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46822 (CVSS 9.9) — Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (component: Intern...
A critical vulnerability has been published under CVE-2026-46822, affecting the Oracle iAssets product within Oracle E-Business Suite, specifically versions 12.2.3 through 12.2.15. The vulnerabilit...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46824 (CVSS 9.9) — Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (comp...
A critical vulnerability has been published under CVE-2026-46824, affecting the Oracle Universal Work Queue product within Oracle E-Business Suite, specifically the Work Provider Site Level Adminis...
Read analysis →
CVE 29 May 2026 nvd
CVE-2026-46833 (CVSS 9.0) — Vulnerability in the Net Service component of Oracle Database Server. Supported versions...
CVE 29 May 2026 nvd
CVE-2026-46839 (CVSS 9.9) — Vulnerability in Oracle REST Data Services (component: Core). Supported versions that ar...
CVE 29 May 2026 nvd
CVE-2026-46840 (CVSS 10.0) — Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service). Supported...
CVE 29 May 2026 nvd
CVE-2026-8809 (CVSS 9.8) — The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escal...
DORA 29 May 2026 cellar
CELEX:32024R1623R(04)
BREACH 28 May 2026 ransomwarelive
Ransomware: akira claims Gone Fishin' Marine — Hospitality and Tourism
On 27 May 2026, a ransomware incident involving the Akira group was published on the ransomware tracking site ransomware.live, targeting Gone Fishin' Marine, an entity within the hospitality and to...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: Code as a Weapon: A Consensus-Labeled Prompt Bank for Measuring Coding-Model Compliance with Malicious-Code Re...
This paper, published on arXiv, introduces a new benchmark called "Code as a Weapon," which is a curated set of prompts designed to test whether large language models (LLMs) that generate code will...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: Efficient and Quantum-safe Internet Key Exchange Protocols for Satellite Communications
This publication from May 2026 introduces a new technical framework for Internet Key Exchange (IKE) protocols designed to be resistant to quantum computing attacks, specifically tailored for satell...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: MaskClaw: Edge-Side Personalized Privacy Arbitration for GUI Agents with Behavior-Driven Skill Evolution
This paper, published on arXiv, introduces MaskClaw, a technical framework designed to enhance privacy for graphical user interface (GUI) agents—AI systems that interact with software interfaces on...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: GraphSteal: Structural Knowledge Stealing from Graph RAG via Traversal Reconstruction
A new research paper, GraphSteal, published on arXiv, demonstrates a novel method for extracting the structural knowledge embedded within Graph-based Retrieval-Augmented Generation (RAG) systems. T...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: Blind PRNG Hijacking: An Undetectable Integrity-Preserving Attack Against LLM Watermarking
A new academic paper published on arXiv, titled "Blind PRNG Hijacking: An Undetectable Integrity-Preserving Attack Against LLM Watermarking," presents a novel method to remove or bypass watermarkin...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: Position: Retire the "Positive Backdoor" Label -- Secret Alignment Requires Strict and Systematic Evaluation
A new position paper published on arXiv, titled "Retire the 'Positive Backdoor' Label -- Secret Alignment Requires Strict and Systematic Evaluation," argues that the AI safety community should aban...
Read analysis →
AI_SAFETY 28 May 2026 arxiv_cscr
arXiv: Technical Report: Exploring the Emerging Threats of the Agent Skill Ecosystem
This technical report, published on arXiv on May 27, 2026, identifies emerging security and safety risks within the rapidly growing ecosystem of AI agent skills—modular capabilities that can be dow...
Read analysis →