27 Oct – 02 Nov 2025 Critical flaw has been found in UniFi® Access application, which leaves its management API exposed with no authentication required. The UniFi® Access Application is part of Ubiquiti’s platform designed for modern, managed door access control. It is used in …
Explore the latest in cybersecurity, AI accountability, and digital trust from massive data leaks and ransomware hybrids to new regulations under DORA and NIS2. Featuring insights from CyAN members on supply chain security, responsible AI, resilience, and leadership. You can download this edition by clicking …
Sandeep Desai is a board-engaged cybersecurity and technologyexecutive with 20+ years of experience aligning cybersecurity, ITstrategy, and enterprise risk management with revenue growth,operational resilience, and regulatory compliance goals across publicand private enterprises. Known for translating compliance mandatesinto operational excellence, Sandeep specializes in modernizinggovernance, scaling secure …
20 – 26 Oct 2025 The next star of our #CVE of the Week series is CVE-2025-33073, an improper authorization flaw in Microsoft’s SMB implementation. As you might have noticed from its ID number, this is not a freshly discovered one, but it still deserves …
This week’s edition uncovers global fraud takedowns, AI-driven exploits, and state-backed cyber activity targeting governments and defence firms. Cloud outages, identity abuse, and social-platform malware highlight how fragility now scales worldwide. You can download this edition by clicking the three dots icon on the far …
CyAN is delighted to welcome Karthikeyan Ramdass, an accomplished cybersecurity leader with over 18 years of experience protecting global enterprises in the technology, aviation, financial, and insurance sectors. Karthikeyan currently serves as Lead Member of Technical Staff at Salesforce, where he leads initiatives in Application …
13 – 19 Oct 2025 This week’s CVE of The Week is about a remote code vulnerability in Windows Server Update Service (WSUS): CVE-2025-59287. The Windows Server Update Service provides a way for IT administrators to deploy the latest Microsoft product updates. They can use …
Global Data Breaches, AI Missteps, and the New Frontiers of Trust This week’s issue tracks large-scale data leaks, AI accountability failures, and new challenges shaping digital trust. From the $5.8 million fine against Australian Clinical Labs to China’s stealth operations and Europe’s privacy wins, cybersecurity …
Digital governance isn’t just about frameworks and policies, it’s about people, power, and the principles we’re willing to defend when technology overreaches. And this week, as delegates gather for International Data Week 2025 in Brisbane, they do so against the backdrop of a significant win …
06 – 12 Oct 2025 A critical use-after-free vulnerability has surfaced in Redis — lurking in the codebase for over a decade. Dubbed RediShell, this CVSS 10.0 flaw lets attackers craft malicious Lua scripts to hijack memory and potentially execute remote code, reminding us that …