The CyAN Blog
Cybersecurity Advisors Network’s blog is a forum for CyAN members and friends to present their work and analysis to the broader information security community.
Most People Think They Understand Their Rights. They Don’t.
Recent conversations around intelligence powers and surveillance frameworks in Australia, particularly proposed changes to ASIO’s compulsory questioning powers, have sparked predictable reactions. Some are alarmed, others are dismissive, and most fall somewhere in between, unsure what is real, what is exaggerated, and what it all …
Partnership signed with ESP’ Info, Brazzaville, Republic of the Congo
Cybersecurity Advisors Network (CyAN) signed on 02 April 2026 a Memorandum of Understanding with ESP’ Info, a training institute on cybersecurity Brazzaville, Republic of the Congo. The signature took place in Lille, at InCyber Forum. This partnership marks the second collaboration between a training institute …
When “Compliance” Becomes a Proxy for Trust
Over the past few days, a story has been doing the rounds about a fast-growing compliance startup and its sudden parting of ways with a major backer. It’s easy to get pulled into the specifics, the allegations, the responses, and the inevitable back-and-forth. But I …
It Installed Cleanly, That Was the Problem by Michael T. McDonald
There’s a persistent assumption in software security that something has to visibly fail before a system is compromised. A vulnerability is exploited, a control is bypassed, or a configuration is misapplied. In most post-incident narratives, there is a clear point where things go wrong. This …
Python Didn’t Bite, the Supply Chain Did by Michael T. McDonald
There’s a particular kind of failure in modern software that doesn’t announce itself with alarms or outages. No flashing dashboards, no immediate disruption. Everything appears to be working exactly as expected. Until, quietly and without ceremony, it isn’t. A widely used Python package, pulled in …
Signals Over Substance: Navigating the Attention Economy
In a recent article (see link in the comments below), I revisited a framework I developed more than a decade ago while writing Flat World Navigation, Collaboration and Networking. At the time, I was trying to make sense of what felt like a shifting economic …
Livre Blanc CyAN – Loi 05-20, ISO27001 et Résilience Cyber – Mars 2026 by Gilles Chevillon and Aymane Nasser
You can download this PDF by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. Loi 05-20 et …
Parents and companies need to act against social media harms by Shireen Vakil
Platforms often introduce safeguards only after problems emerge rather than building protections into their systems from the start. This places an unreasonable burden on children and parents Parents and companies need to act against social media harms Source: The Indian Express Read the full article …