Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
All Changes

EU Regulatory Changes

1866 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
BREACH 20 Jun 2026 ransomwarelive
Ransomware: nova claims Desert Micro — Technology
On 19 June 2026, a ransomware group known as nova claimed responsibility for an attack on Desert Micro, a technology firm, as reported on the ransomware monitoring platform ransomware.live. This in...
Read analysis →
BREACH 20 Jun 2026 ransomwarelive
Ransomware: anubis claims KTR Real Estate Advisors (US) — Financial Services
On 19 June 2026, a ransomware group known as Anubis published a claim of responsibility for a cyberattack against KTR Real Estate Advisors, a US-based firm operating in the financial services secto...
Read analysis →
BREACH 20 Jun 2026 ransomwarelive
Ransomware: Icarus claims Klue.com (CA) — Technology
A new ransomware incident has been published on the ransomware.live leak site, involving the threat group Icarus and the victim Klue.com, a Canadian technology company. The breach was reported on J...
Read analysis →
BREACH 20 Jun 2026 ransomwarelive
Ransomware: stormous claims mlit.com.my UPDATE-FULL DATA DUMP 10GB (MY) — Public Sector
BREACH 20 Jun 2026 ransomwarelive
Ransomware: aurora claims Hagerman & Company — Business Services
CVE 20 Jun 2026 nvd
CVE-2026-56081 (CVSS 9.1) — Cap-go before 12.128.2 contains an authentication logic flaw that lets an attacker regist...
CVE 20 Jun 2026 nvd
CVE-2026-11551 (CVSS 9.8) — The Branda plugin for WordPress is vulnerable to privilege escalation via account takeove...
BREACH 20 Jun 2026 hibp
Breach: JCPenney (368,418 accounts) — Dates of birth, Email addresses, Government issued IDs
CVE 20 Jun 2026 nvd
CVE-2026-8024 (CVSS 9.8) — A remote, unauthenticated attacker may exploit a deserialization of untrusted data vulnera...
CVE 20 Jun 2026 nvd
CVE-2026-54390 (CVSS 9.8) — JTL Shop versions 5.2.0 through 5.7.1 contains a server-side template injection vulnerabi...
CVE 20 Jun 2026 nvd
CVE-2026-47647 (CVSS 9.9) — Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevat...
CVE 20 Jun 2026 nvd
CVE-2026-54130 (CVSS 9.8) — Missing authentication for critical function in M365 Copilot allows an unauthorized attac...
CVE 20 Jun 2026 nvd
CVE-2026-7515 (CVSS 9.8) — The BetterDocs Pro plugin for WordPress is vulnerable to Local File Inclusion in versions ...
CVE 20 Jun 2026 nvd
CVE-2026-8713 (CVSS 9.1) — The Avada (Fusion) Builder plugin for WordPress is vulnerable to arbitrary file deletion d...
CVE 20 Jun 2026 nvd
CVE-2026-45480 (CVSS 10.0) — Improper authentication in Azure Active Directory allows an unauthorized attacker to ele...
CVE 20 Jun 2026 nvd
CVE-2026-48582 (CVSS 9.6) — Missing authorization in Microsoft Exchange Online allows an authorized attacker to eleva...
CVE 20 Jun 2026 nvd
CVE-2026-48584 (CVSS 9.9) — Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to e...
CVE 20 Jun 2026 nvd
CVE-2026-56073 (CVSS 9.4) — Cap-go before 12.128.2 contains an authentication bypass vulnerability in OTP verificatio...
CRA 20 Jun 2026 europarl
Press release - Press conference: European Democracy Shield findings and recommendations
DORA 20 Jun 2026 cellar
CELEX:32024R2076R(09)