DEFION in numbers Five disciplines. One partner. No juggling five vendors for five problems. One team that covers your entire security posture, from advisory to 24/7 monitoring and crisis response. Independent. AI-accelerated. 20 years proven. You get advice without a hidden sales agenda. DEFION doesn't sell products, only protection. That means our recommendations are always in your interest. From boardroom to server room, 24/7 monitoring and AI-accelerated pentesting. One partner for your entire attack surface: IT, OT, and IoT. About DEFION → 100+ specialists. Two offices. One team. Zoetermeer and Barcelona. Real people, senior expertise. No offshore support, no call-center triage. When you call DEFION, you reach the engineer who can actually help. Independent since 2005. Still driven by the people who founded it. Faster detection. Less noise. Better decisions. You only get alerts that matter. No flood of false positives, no overwhelmed security team. Our technology filters the noise, our experts make the calls. The result: threats detected in minutes instead of days. And when it counts, there are always people ready who know what to do. Alert within 4 minutes No hours or days waiting for an alarm Only what matters Your team sees relevant alerts, not thousands Pentest in 24 hours First vulnerabilities same day, not after weeks Experts who decide No automated guesswork, real human judgment What we see right now. Week 20, 2026 · Updated May 15, 2026 Our TI team monitors 40+ sources 24/7. These are the most relevant threats for European organizations. "The Gentlemen" Hits Dutch Institution Overnight: NIS2 Notification Obligations May Apply "The Gentlemen" hits Dutch institution overnight (detected 22:19 UTC). Sector: government/culture/research. NIS2 notification obligations may apply. Action: activate incident response procedures and verify backups for government and education organizations. May 15, 2026 · Confidence: High Read more →NCSC-2026-0155/0156: Fortinet FortiSandbox Unauthenticated RCE and FortiAuthenticator Access Control Flaw Require Immediate Patching NCSC-2026-0155: Fortinet FortiSandbox unauthenticated RCE. NCSC-2026-0156: FortiAuthenticator access control flaw with RCE impact. No valid credentials required. Action: patch Fortinet systems immediately and verify exposure. May 15, 2026 · Confidence: High Read more →Foxconn Breached by Nitrogen Ransomware: Apple and Nvidia Data Claimed; SonicWall SMA1000 SQLi (CVE-2026-4112) Actively Exploited Foxconn breached by Nitrogen ransomware: Apple and Nvidia data claimed, supply chain risk for tech and manufacturing. CVE-2026-4112 SonicWall SMA1000 SQLi (CVSS 8.0) actively exploited. Action: patch SonicWall and assess Foxconn supply chain dependencies. May 15, 2026 · Confidence: High Read more →We speak your language. Newsroom AZ and DEFION Security: Official Supplier for Optimal Data Protection AZ and DEFION enter into a multi-year strategic partnership as Official Supplier to strengthen the club's digital resilience. DEFION protects the valuable data AZ uses for performance on and off the pitch. CVE-2026-31431 ("Copy Fail"): Critical Linux Privilege Escalation Vulnerability Explained CVE-2026-31431 ("Copy Fail") is a Linux kernel vulnerability enabling stealthy privilege escalation to root. Learn about the impact, affected systems, and mitigation steps. SURF Deployment: DEFION and DTX Secure 75+ Education and Research Institutions DTX and DEFION begin rolling out MDR services for SURF. More than 75 Dutch universities, polytechnics and vocational colleges receive 24/7 protection against cyberattacks. Ready to make your security AI-proof? Talk to one of our experts. No obligations, no sales pitch: an honest conversation about your situation.

Security done by experts. Accelerated with AI.