Recent Posts

12/06/2026

Week 24 – The Gateway That Let Attackers In

08 – 14 June 2026 This week’s CVE of the Week highlights an unauthenticated remote code execution vulnerability in Ivanti Sentry, CVE-2026-10520. Ivanti Sentry is an in-line gateway that manages, encrypts, and secures traffic between the mobile device and back-end enterprise systems. It’s a security 

CVE of the Week
-
by White Hat IT Security
05/06/2026

Week 23 – Exchange Servers at Risk: Active Exploitation

01 – 07 June 2026 A newly discovered vulnerability in Microsoft Exchange is currently being actively exploited by attackers. The issue, identified as CVE-2026-42897, this week’s CVE of the Week, affects the Outlook Web Access (OWA) component and is caused by improper input validation, leading 

CVE of the Week
-
by White Hat IT Security
Please welcome our newest member from Canada, Tania Tanic 
02/06/2026

Please welcome our newest member from Canada, Tania Tanic 

Tania Tanic is a senior executive in cybersecurity, artificial intelligence innovation, governance and digital transformation, with more than 27 years of experience in major Canadian and international organizations, particularly in financial services, public investment, technology and consulting. A CPA and certified corporate director, she holds 

CyAN News
-
by Fel Gayanilo
29/05/2026

Week 22 – Click here to fix!

25 – 31 May 2026 CVE-2026-26980 is a critical SQL Injection vulnerability affecting Ghost CMS, a popular Node.js-based content management platform. In this week’s CVE of the Week we’ll be looking at CVE-2026-26980 critical vulnerability with a CVSS score of 9.4. The flaw allows unauthenticated 

CVE of the Week
-
by White Hat IT Security
Please welcome our newest member from France, Issa Diarra
29/05/2026

Please welcome our newest member from France, Issa Diarra

Issa Diarra is a Cybersecurity Engineer and Splunk Expert with more than 10 years of experience in IT, including 5 years dedicated to SOC operations, SIEM engineering, cyber threat detection, and incident response. His expertise spans hybrid cloud security, threat hunting, detection engineering, and security 

CyAN News
-
by Fel Gayanilo
UAE CYBER THREAT REPORT INCIDENTS, RESPONSE AND RESILIENCE – 2026 BY SREELAKSHMI SREEKUMAR
28/05/2026

UAE CYBER THREAT REPORT INCIDENTS, RESPONSE AND RESILIENCE – 2026 BY SREELAKSHMI SREEKUMAR

The CyAN Blog
-
by Cyan Staff
AI Adoption and Cybersecurity in Tunisia: Why Threat Modeling Matters by Nour ElHouda Belhadj Fredj
27/05/2026

AI Adoption and Cybersecurity in Tunisia: Why Threat Modeling Matters by Nour ElHouda Belhadj Fredj

The CyAN Blog
-
by Cyan Staff
Harm as Infrastructure: The Systems That Depend on What We Say We Want to Remove
26/05/2026

Harm as Infrastructure: The Systems That Depend on What We Say We Want to Remove

A thought I can’t quite shake I’ve been thinking about poker machines lately, which is not a sentence I expected to write. Not because gambling is new, and not because Australians haven’t been arguing about pokies for decades. What’s been sitting with me is something 

The CyAN Blog
-
by Kim McDonald
22/05/2026

Week 21 – Cisco SD-WAN: Peers Only… Or Not

Cisco Catalyst SD-WAN Controller has maximum severity flaw, attacker could log in as internal, high-prilvileged. non-root user.

CVE of the Week
-
by White Hat IT Security
Cyber (In)Securities – Issue 202
20/05/2026

Cyber (In)Securities – Issue 202

You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles 

Recent Digests
-
by Fel Gayanilo