The CyAN Blog
Cybersecurity Advisors Network’s blog is a forum for CyAN members and friends to present their work and analysis to the broader information security community.
Real Estate’s Data Reckoning Was Always Coming
In September 2024, I published an article on LinkedIn titled The Cost of Convenience: How Data Mismanagement and Ticket-Clipping Models are Failing Renters. It was written out of growing unease, not hindsight. At the time, the concern was simple but deeply uncomfortable: real estate agencies …
When “Just a Tool” Stops Being a Defence
Over the past three days, a pattern has emerged that is difficult to dismiss as coincidence, mischief, or edge-case misuse. Investigations reported by reputable outlets, including The Guardian, reveal that Grok, an AI image generation tool, has been used to produce sexualised fake images of …
Software Supply Chain Failures: The Emerging Priority in Application Security by Karthikeyan Ramdass
As modern software ecosystems become increasingly interconnected, software supply chain security has emerged as one of the most critical challenges in application security today. In this article, CyAN member Karthikeyan Ramdass examines why Software Supply Chain Failures, ranked as A03 in the OWASP Top 10:2025, …
Navigating EU Compliance for AI-Enabled Wearable Medical Devices: MDR, AI Act, GDPR and Data Act Interplay
You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles …
Reflections on Day Two of the 2025 Neurotechnology Summit: Capability, Governance and the Questions We Must Answer
If Day One explored what neurotechnology means for individual minds, Day Two confronted what it will mean for societies, states and the systems that govern them. The conversations shifted from personal rights, clinical ethics and emerging applications to national capability, infrastructure, defence, public policy and …
Reflections on Day One of the Neurotechnology Summit: Where Mind Meets Machine and Governance Tries to Keep Up
There was a moment on Day One of the 2025 Neurotechnology Summit, superbly crafted by Andra Müller of Jewelrock and Dr. Allan McCay , when I looked around the room and realised something quietly extraordinary. This was not a gathering of technologists on one side …
The Compliance Theatre: When Red Tape Meets Cybersecurity by Nick Kelly
The Suffocating Embrace of Accumulated Law The Government (I speak of the US Government in this article, although the principle argument is as good as a blueprint for many other governments globally) has developed a peculiar affliction over the past half-century: the inability to throw …