Recent Posts

Cyber (In)Securities – Issue 186
28/01/2026

Cyber (In)Securities – Issue 186

You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles 

Recent Digests
-
by Fel Gayanilo
Why Stop Killing Games Matters for Information Security Professionals
27/01/2026

Why Stop Killing Games Matters for Information Security Professionals

The Stop Killing Games initiative recently collected over 1.2m signatures supporting rules that require publishers to ensure continued access to paid-for but discontinued software. Here’s why that matters for information security and resilience professionals.

The CyAN Blog
-
by John Salomon
27/01/2026

Beyond Compliance: Building Continuous Confidence in Risk, Governance, and Cybersecurity by Pathan Humam

Across industries, organizations are investing heavily in cybersecurity controls, compliance frameworks, and assurance programs. Yet many leadership teams still struggle to answer a simple but critical question with confidence: “What is our risk posture right now—and can we trust it?” As cyber threats accelerate, regulatory 

The CyAN Blog
-
by Cyan Staff
23/01/2026

Week 4 – Actively Exploited Zero-Day RCE Hits Cisco Unified CM and Webex Calling

12 – 18 Jan 2026 This week’s CVE of the Week is about the recent remote code execution vulnerability in Cisco’s Unified Communications (CM) products and Webex Calling Dedicated Instance, that has been actively exploited as a zero-day. This vulnerability is due to improper validation 

CVE of the Week
-
by White Hat IT Security
Cyber (In)Securities – Issue 185
21/01/2026

Cyber (In)Securities – Issue 185

You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles 

Recent Digests
-
by Fel Gayanilo
16/01/2026

Week 3 – AI Agents Under Attack: High-Risk Vulnerability in ServiceNow

12 – 18 Jan 2026 Our CVE of the Week series continues with an AI Agent vulnerability that affected ServiceNow, one of the most popular cloud-based platforms for IT and business process automation. The CVE-2025-12420 vulnerability, assigned with a CVSS 4.0 score of 9.3, allows 

CVE of the Week
-
by White Hat IT Security
CyAN Position on Proposed Amendments to the UK Children’s Wellbeing and Schools Bill  (HL Bill 135)
15/01/2026

CyAN Position on Proposed Amendments to the UK Children’s Wellbeing and Schools Bill  (HL Bill 135)

CyAN’s position statement opposing proposed amendments to the UK child protection bill that would restrict privacy and impact information security

The CyAN Blog
-
by Cyan Staff
14/01/2026

Week 2 – Wake up from this “Ni8mare”

5 – 11 Jan 2026 A new year, the same mission: raising awareness of critical vulnerabilities. Our CVE of the Week series continues in 2026 to help you stay ahead of emerging security risks. Let’s get started. Our first choice in 2026 is a vulnerability 

CVE of the Week
-
by White Hat IT Security
Cyber (In)Securities – Issue 184
14/01/2026

Cyber (In)Securities – Issue 184

You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles 

Recent Digests
-
by Fel Gayanilo
Real Estate’s Data Reckoning Was Always Coming
13/01/2026

Real Estate’s Data Reckoning Was Always Coming

In September 2024, I published an article on LinkedIn titled The Cost of Convenience: How Data Mismanagement and Ticket-Clipping Models are Failing Renters. It was written out of growing unease, not hindsight. At the time, the concern was simple but deeply uncomfortable: real estate agencies 

The CyAN Blog
-
by Kim McDonald