14 – 30 Nov 2025 A newly disclosed and actively exploited FortiWeb vulnerability (CVE-2025-58034) allows authenticated attackers to execute arbitrary OS commands, posing a serious risk to organizations relying on the platform for critical web application protection. Despite its medium-severity vulnerability (CVSS score of 6.7), …
17 – 23 Nov 2025 On Monday Google released security updates for its Chrome browser to address two security flaws, including one that has come under active exploitation in the wild. Our CVE of the Week is about CVE-2025-13223 vulnerability with a CVSS score of …
You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third icon from the right. All article titles …
Director, Automation and Cybersecurity OT Practitioner With over sixteen years of experience in industrial automation and cybersecurity, Prasad specialises in architecting secure and resilient systems across Oil and Gas, Cement, and Power sectors. As a PMP certified project leader and Agile practitioner, he brings extensive …
On Tuesday December 9, CyAN member Karthikeyan Ramdass will present an analysis of the massive 2025 npm supply chain attack (CISA.gov) that used compromised packages to attack numerous online services. We will learn topics such as how and why did it happen? How could it have been prevented? What …
10 – 16 Nov 2025 Mandiant has confirmed that threat actors are actively exploiting a critical flaw (CVE-2025-12480) in Triofox by Gladinet — a remote access and file-sharing platform.The vulnerability allows authentication bypass, letting attackers create admin accounts and execute arbitrary code by abusing the …
Quantum Breakthroughs, Major Breaches, and Machine-Speed Threats You can download this edition by clicking the three dots icon on the far right and selecting Download PDF File. For the best reading experience, we recommend enlarging it by clicking the fullscreen icon, which is the third …
From Data to Thought For decades, cybersecurity has been concerned with protecting what we know — our data, our systems, our networks. Neurotechnology, by contrast, is beginning to probe something even more intimate: what we think. As the boundaries between biological systems and digital networks …
I scroll past another TikTok about how AI is “ruining everything!” The comments are predictably catastrophic: artists losing jobs, humanity’s demise, the usual. I keep scrolling. Five videos later, an AI-generated meme makes me laugh. Of course, the comments are pure outrage: “Stop normalising AI!” …
