BVTech Blog — IT Insights from Jordan Polasek

Practical cybersecurity, cloud, and managed-IT guidance for Texas businesses. Every article written by Jordan Polasek, Founder of BVTech LLC.

BVTech Insights

Latest Articles from Jordan Polasek

Expert perspectives on cybersecurity, cloud computing, managed IT, and technology strategy for Texas small businesses — written by Jordan Polasek, Founder of BVTech LLC.

📰 NEW · JULY 18 KEV ALERT

A Heavy Week of KEV Additions: SharePoint, FortiSandbox, and SonicWall Under Fire — July 18, 2026

A Heavy Week of KEV Additions: SharePoint, FortiSandbox, and SonicWall Under Fire — July 18, 2026 | Jordan Polasek | BVTech LLC /* BVTech v28 critical CSS…

Read the Full Report →
📰 NEW · APRIL 5 KEV ALERT

The 10-Minute Email Fix That Stops Most Phishing in Austin

Most phishing attacks that land in your inbox aren't sophisticated. They're cheap, automated, and rely on one thing: your email system letting a stranger…

Read the Full Report →
📰 NEW · JULY 17 KEV ALERT

They Stole the Second Factor Itself: SonicWall SMA Appliances Under Active Attack

They didn't just break into the appliance that guards your remote workers — they walked out with the keys, the spare keys, and the code to the alarm…

Read the Full Report →
📰 NEW · APRIL 5 KEV ALERT

SharePoint and FortiSandbox Under Attack — July 17, 2026

Good morning. I'm Jordan Polasek with BVTech, and this week has been a heavy one for the KEV catalog. CISA added ten confirmed exploited vulnerabilities…

Read the Full Report →
📰 NEW · APRIL 5 KEV ALERT

What a Houston Wire Fraud Taught Us About Security Training

A few months back, a small Houston professional services firm came to us after a scare that nearly cost them $47,000. Their office manager — sharp,…

Read the Full Report →
📰 NEW · JULY 16 KEV ALERT

BVTech News — SharePoint Again, and FortiSandbox Twice: Three New KEV Entries With 3-Day Deadlines

CISA added three vulnerabilities to the KEV catalog on July 16, 2026: a Microsoft SharePoint deserialization flaw (CVE-2026-58644) and two Fortinet FortiSandbox command-injection flaws (CVE-2026-25089, CVE-2026-39808) —…

Read the Full Report →
📰 NEW · APRIL 5 SECURITY

The Malware Detonation Box Is the Target: FortiSandbox Hits the KEV List Twice in One Day

Two Fortinet FortiSandbox command-injection flaws (CVE-2026-25089, CVE-2026-39808) joined CISA's KEV catalog on July 16, 2026 with 3-day deadlines. Why security appliances keep becoming the way in, and the three…

Read the Full Report →
📰 NEW · JULY 15 WEEKLY REPORT

570 Fixes, Two Already Being Exploited: July's Record Patch Tuesday

There is a particular sinking feeling in this work: a company ships the fix for a hole, and you realize attackers were already climbing through it before…

Read the Full Report →
📰 NEW · JULY 15 WEEKLY REPORT

BVTech News – Six New KEV Entries Hit This Week (July 15, 2026)

Good morning, folks. Jordan here with your daily cybersecurity briefing. Over the past two days, CISA added six new vulnerabilities to its Known Exploited…

Read the Full Report →
📰 NEW · JULY 15 WEEKLY REPORT

7 Signs Your Sugar Land Business Has Outgrown Break-Fix IT

There's a quiet shift happening in how small businesses buy IT support, and it accelerated fast over the last year. The old "call someone when the server…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

Weekly Security Briefing: When Break-Fix IT Fails Sugar Land

Welcome to this week's security briefing for Texas small businesses. We at BVTech track the threat landscape so you don't have to, and we translate it…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

8 Microsoft 365 Security Settings San Antonio Businesses Need

Microsoft 365 is powerful, but it ships with a lot of security features turned off or set to their weakest option. That's a problem, because attackers…

Read the Full Report →
📰 NEW · JULY 12 WEEKLY REPORT

A Booby-Trapped Email That Fires the Moment You Open It: The Critical Zimbra Flaw Every Self-Hosted Mail Server Needs Patched Now

There is a specific kind of danger that doesn't need you to click anything, download anything, or make a single mistake. It just needs you to open your…

Read the Full Report →
📰 NEW · JULY 11 WEEKLY REPORT

Backups and Disaster Recovery: A Practical Guide for Austin

Ask ten small-business owners if their data is backed up and nine will say yes. Ask them when they last tested a restore, and the room goes quiet. That…

Read the Full Report →
📰 NEW · JULY 7 WEEKLY REPORT

‘CitrixBleed 2’ Is Here: A New NetScaler Flaw (CVE-2026-8451) Is Already Being Exploited

The last time a NetScaler bug went this way, hospitals shut down and casino floors went dark. So when researchers start calling a brandnew Citrix flaw…

Read the Full Report →
📰 NEW · JUNE 30 WEEKLY REPORT

Critical Ubiquiti UniFi Flaws Are Being Exploited Now — Patch Your Office Network Gear

There's an uncomfortable truth about the network gear humming away in the closet at your office: it is one of the most powerful — and most overlooked —…

Read the Full Report →
📰 NEW · JULY 11 WEEKLY REPORT

'Free' Software Is Hunting Your Passwords: The Vidar Malvertising Campaign Aimed at Small Businesses

Most of the security stories I write about start with a flaw in something you bought. This one starts with something a good employee does on an ordinary…

Read the Full Report →
📰 NEW · JULY 1 WEEKLY REPORT

Hackers Are Walking Past Your MFA — The Microsoft 365 'Device Code' Trick, Explained

You did everything the security people told you to do. You turned on multifactor authentication for your Microsoft 365 accounts, so that even if a…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Inside BVTech LLC: How Jordan Polasek Delivers Enterprise IT to SMBs — BVTech LLC

When I founded BVTech LLC here in Texas, I had a clear vision: bring enterprise-level IT solutions to small and medium-sized businesses that had

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Fortinet FortiClient EMS Zero-Day, Ivanti EPMM, and the Edge-Device Problem — Jordan Polasek's Weekly CVE Recap — Jordan Polasek

Jordan Polasek breaks down the Fortinet FortiClient EMS zero-day (CVE-2026-35616) added to CISA KEV this week, plus a second critical Ivanti EPMM flaw, and why edge devices remain the single most-targeted segment of…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

When 14-Year-Old CVEs Come Back: Microsoft VBA, Fortinet SQLi, and What "Technical Debt as Security Debt" Actually Means — Jordan Polasek

CISA added six vulnerabilities to KEV this week — including a 14-year-old Microsoft VBA flaw and a Fortinet SQL injection being weaponized for Medusa ransomware. Jordan Polasek explains why old CVEs are still hitting…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Eight Vulnerabilities in One Day: Cisco SD-WAN Manager Triple, PaperCut Ransomware, and the SimpleHelp Mess — Jordan Polasek

CISA added twelve vulnerabilities to KEV this week across two major dumps, including three Cisco Catalyst SD-WAN Manager flaws, a PaperCut auth bypass used by the Clop ransomware affiliate Lace Tempest, and the…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

Password Managers & MFA: A San Antonio Rollout Checklist

Weak passwords and reused logins are still the front door most attackers walk through. The fix isn't complicated, but it does take a plan. If your team is…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Ivanti EPMM Hits KEV, Cisco Catalyst SD-WAN Authentication Bypass, and the Continuing Edge-Appliance Problem — Jordan Polasek

Jordan Polasek breaks down the Ivanti EPMM RCE (CVE-2026-6973) formally added to CISA KEV this week, the new Cisco Catalyst SD-WAN authentication bypass (CVE-2026-42897), and why eight months of weekly recaps now read…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

AI-Driven Phishing Is Now 41% of SMB Cyberattacks: The Numbers, the Mechanics, and What Texas Businesses Should Actually Change — Jordan Polasek

Forty-one percent of SMB cyberattacks in 2025 were AI-driven. Jordan Polasek breaks down what AI-assisted phishing actually looks like in Texas small business environments, why traditional anti-phishing training is…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Langflow Origin Validation Flaw and Trend Micro Apex One Directory Traversal: When Your AI Tooling and Your Security Tooling Both Become Attack Surfaces — Jordan Polasek

CISA added two vulnerabilities to KEV this week — Langflow (an LLM workflow builder) and Trend Micro Apex One. Jordan Polasek explains what each one means for Texas SMBs, why \

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Mid-Week Intel: Drupal SQL Injection on KEV, Microsoft Defender Double, and Cisco Catalyst SD-WAN Emergency Directive 26-03 — Jordan Polasek

CISA added Drupal Core CVE-2026-9082 to KEV today after exploitation began within days of the patch. The May 20 Microsoft Defender double, the May 14 Cisco Catalyst SD-WAN Controller authentication bypass (covered by…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

A Quieter Week at CISA: Microsoft Defender Access Control Flaw, Supply-Chain Hardening, and Why "Boring" Is a Compliment in Security — Jordan Polasek

After two manic weeks at CISA, this week's KEV addition was a single Microsoft Defender access-control flaw. Jordan Polasek explains why boring weeks are good for Texas SMBs — and what to do with the spare cycles.

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Jordan Polasek on Why Multi-Factor Authentication Is Essential for Every Business — BVTech LLC

As Jordan Polasek, Founder of BVTech LLC, I've witnessed firsthand how a single compromised password can devastate a business. Over my two decades in IT and

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Meet Jordan Polasek: The Technology Professional Behind BVTech LLC — BVTech LLC

Meet Jordan Polasek: The Technology Professional Behind BVTech LLC I'm Jordan Polasek, and for two decades, I've been helping businesses across Texas nav

Read the Full Report →
📰 NEW · JULY 3 WEEKLY REPORT

Microsoft Called It “Less Likely” — Then Attackers Hit This SharePoint Flaw (CVE-2026-45659)

There is a particular sting to this one: Microsoft told everybody a SharePoint bug was probably not worth worrying about — and then attackers started…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

Outsource IT or Hire In-House? A Sugar Land Owner's Guide

At some point every growing business hits the same wall: your technology needs more attention than someone can give it "on the side." The question is…

Read the Full Report →
📰 NEW · JULY 10 WEEKLY REPORT

Phishing Attacks in Sugar Land: How to Protect Your Inbox

Your team gets an email that looks like it's from your bank, your vendor, or even your boss. It asks for a wire transfer, a password reset, or a quick…

Read the Full Report →
📰 NEW · JULY 10 WEEKLY REPORT

Phishing Defense for Sugar Land Small Businesses: A Guide

The email looks legit. It's from your bank, your vendor, or even someone claiming to be you. It asks you to click a link, confirm a password, or wire…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

Cyber Insurance Requirements Austin Businesses Must Meet in 2026

Cyber insurance used to be easy. You filled out a one-page form, checked a few boxes, and got a policy. Those days are gone. In 2026, insurers are asking…

Read the Full Report →
📰 NEW · JULY 10 WEEKLY REPORT

Ransomware Readiness for Houston Small Businesses in 2026

Ransomware isn't a big-company problem anymore. Attackers now automate their scans, hunting for any business with weak defenses and money to lose. If you…

Read the Full Report →
📰 NEW · JULY 8 WEEKLY REPORT

The Break-In Came Through the Page Builder: Two Max-Severity Joomla Flaws (CVE-2026-56290 & CVE-2026-48908) Are Hijacking Small-Business Sites

The tool you used to build your website — the draganddrop page builder that let you lay out your homepage without writing a line of code — has quietly…

Read the Full Report →
📰 NEW · JULY 10 WEEKLY REPORT

The Flaw Is Inside Your Antivirus: What the Microsoft Defender “RoguePlanet” Bug (CVE-2026-50656) Means for Your Business

There is a specific kind of unsettling news in this business: a flaw not in some obscure addon, but in the antivirus that ships inside Windows itself —…

Read the Full Report →
📰 NEW · JULY 2 WEEKLY REPORT

The Load Balancer at Your Front Door — Critical Progress Kemp LoadMaster Flaw (CVE-2026-8037) Is Being Probed Now

There is a specific kind of appliance in a lot of business networks that almost nobody thinks about until it breaks: the load balancer that sits out…

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

The Windows Update Landing Today Has No Undo Button: The Kerberos RC4 Deadline

There is a strange twist in security work: sometimes the update that protects you is also the one that can knock your own people offline. The Windows…

Read the Full Report →
📰 NEW · JULY 9 WEEKLY REPORT

Two Hours to a Break-In: The Max-Severity Adobe ColdFusion Flaw (CVE-2026-48282) Is Being Exploited Right Now

There is a particular sting to this kind of flaw: it lives in the software that runs your publicfacing web applications — the forms, portals, and internal…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

VoIP Cameras Smart Entry Solutions for Sugar Land Texas Businesses

Modern businesses in Sugar Land, Texas are discovering the transformative power of integrated VoIP cameras smart entry systems to enhance security and stre

Read the Full Report →
📰 NEW · JULY 4 WEEKLY REPORT

When the Remote-Support Tool Becomes the Break-In: A Critical SimpleHelp Flaw (CVE-2026-48558) Is Being Exploited Now

There's a special kind of uneasy that comes with this one. The breakin didn't come through a phishing email or a weak password — it came through the very…

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Who is Jordan Polasek: The Visionary Behind BVTech LLC's IT Success in Comal County — BVTech LLC

Meet Jordan Polasek: Founder and Managing Partner of BVTech LLC When Comal County small businesses need reliable IT support, they turn to Jordan Polasek, t

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Why Jordan Polasek Founded BVTech LLC — Building IT Solutions from the Ground Up — BVTech LLC

Starting BVTech LLC wasn't just a business decision for me—it was a calling. After 13 years in the IT industry, I realized that businesses across Texas, fr

Read the Full Report →
📰 NEW · DECEMBER 15 WEEKLY REPORT

Why San Antonio Businesses Trust Jordan Polasek for Managed IT Services — BVTech LLC

When San Antonio business owners tell me they've been burned by IT providers who overpromise and underdeliver, I understand their frustration completely. T

Read the Full Report →
📰 NEW · JULY 14 WEEKLY REPORT

Wi-Fi Security Basics Every Houston Small Business Needs

Your Wi-Fi network is the front door to your entire business. If it's wide open — or barely locked — everything behind it is exposed: customer records,…

Read the Full Report →
📰 NEW · JULY 5 WEEKLY REPORT

Your Firewall's Password May Already Be for Sale: What FortiBleed Means for Texas Businesses

There is a special kind of quiet danger in this line of work: not a new hole punched in your front door, but the discovery that someone already made a…

Read the Full Report →
📰 NEW · JULY 6 WEEKLY REPORT

Zero Clicks, Full Control: The 'DuneSlide' AI Flaws and What They Mean for Any Business Adopting AI

There is a new kind of breakin that needs no bad link, no opened attachment, and no wrong click from you or your team. It only needs your AI assistant to…

Read the Full Report →
📰 NEW · APRIL 5 WEEKLY REPORT

When the AI Tools Become the Target — LiteLLM's KEV Deadline & What It Means for Comal County Small Business

June 22, 2026 weekly cybersecurity report from Jordan Polasek of BVTech LLC: CVE-2026-42271, a command-injection flaw in the BerriAI LiteLLM AI gateway, hits its CISA KEV deadline today — the latest sign that AI…

Read the Full Report →
📰 NEW · JUNE 20 KEV ALERT

Splunk's First-Ever CISA KEV Entry (CVE-2026-20253) — A Critical SIEM Flaw With a 3-Day Deadline

CVE-2026-20253 is the first Splunk vulnerability ever added to CISA's Known Exploited Vulnerabilities catalog — a critical missing-authentication flaw in Splunk Enterprise with a June 21, 2026 federal deadline. What it…

Read the Full Breakdown →
🤖 NEW · AI & INDUSTRY · April 5

Claude Fable 5 and the Frontier-Model Moment — What It Means for Small Business

Anthropic released Claude Fable 5, its first publicly available Mythos-class model, with safeguards that block high-risk cybersecurity and biology queries. What a frontier AI model that can find software vulnerabilities…

Read Jordan's Take →
📰 JUNE 11 ZERO-DAY ALERT

The Fifth Chrome Zero-Day of 2026 (CVE-2026-11645) — Why Updating Isn't Enough

Chrome's fifth zero-day of 2026 — CVE-2026-11645 in the V8 engine — is exploited in the wild and on CISA's KEV list. What it is, why updating Chrome isn't enough until you relaunch, and the rest of the June 9 KEV…

Read the Full Breakdown →
🛡️ SPECIAL REPORT · June 4

Data Poisoning Is the Defender's New Weapon — Plus Our Free 2026–2027 Cybersecurity Report

Data poisoning is one of the defining security stories of 2026 — and for once the little guy sets the trap. Plus the year's real breaches, the new agentic-AI attack surface, AI governance, and our free 67-page 2026–2027…

Read It & Download the Free Report →
📰 WEEKLY RECAP · APRIL WEEK 1

Cybersecurity Recap: First Week of April 2026 — Claude Code Leak, Chrome Zero-Day & the AI Attack Surface

Jordan Polasek breaks down the cybersecurity events of April 1–5, 2026: the Claude Code leak (and the malware campaign that followed), Chrome CVE-2026-5281 WebGPU zero-day, the Coruna iOS exploit kit, and what it all…

Read Full Recap →
🛡️ THREAT INTELLIGENCE · December 15

Critical Vulnerabilities This Week: Chrome, Citrix NetScaler & TrueConf — What Texas Businesses Need to Patch Now

Jordan Polasek breaks down three critical CVEs added to the CISA KEV catalog this week — CVE-2026-5281 (Chrome Dawn WebGPU), CVE-2026-3055 (Citrix NetScaler), and the TrueConf Client integrity flaw. Remediation steps…

Read Jordan's Analysis →
CYBERSECURITY

Jordan Polasek on Multi-Factor Authentication: Essential Security for Every Texas Business — BVTech LLC

I'm Jordan Polasek, Founder of BVTech LLC, and after 13 years in cybersecurity and IT, I've seen too many businesses fall victim to preventable cyber attac

Read More →
SUPPLY CHAIN

Jordan Polasek on Supply Chain Cybersecurity Risks for SMBs: Protecting Texas Businesses from Hidden Threats — BVTech LLC

When I, Jordan Polasek, founded BVTech LLC, I never imagined my journey would take me from Sleep Medicine to becoming an internationally recognized cyberse

Read More →
MICROSOFT 365

Why Jordan Polasek Recommends Microsoft 365 for Business Success — BVTech LLC

As Jordan Polasek, Founder and Managing Partner of BVTech LLC, I've spent two decades helping businesses across Texas transform their IT infrastructure.

Read More →
NETWORK SECURITY

Jordan Polasek on Network Segmentation: Protecting Critical Business Data — BVTech LLC

As Jordan Polasek, Founder of BVTech LLC, I've witnessed firsthand how network segmentation can be the difference between a minor security incident and a c

Read More →
DISASTER RECOVERY

Jordan Polasek: Why Every Business Needs an IT Disaster Recovery Plan — BVTech LLC

I'm Jordan Polasek, Founder of BVTech LLC, and in my two decades working in IT and cybersecurity across Texas, I've witnessed firsthand what happens when bus

Read More →
SAN ANTONIO

Jordan Polasek's Essential Cybersecurity Guide for Small Businesses in San Antonio — BVTech LLC

As Jordan Polasek, Founder of BVTech LLC, I've spent two decades protecting businesses across Texas from cyber threats. During my time serving San Antoni

Read More →
FIREWALL

Jordan Polasek Explains Firewall Management for Business Owners — BVTech LLC

As Jordan Polasek, Founder of BVTech LLC, I've spent two decades helping businesses across Texas understand that firewall management isn't just an IT che

Read More →
HOUSTON

How BVTech Keeps Houston Businesses Secure

As Jordan Polasek, Founder of BVTech LLC, I've spent two decades watching businesses across Texas struggle with cybersecurity challenges. Based in El Cam

Read More →
HEALTHCARE IT

Navigating Healthcare IT Compliance in Texas

As Jordan Polasek, Founder of BVTech LLC, I've spent two decades helping organizations navigate the complex world of IT infrastructure and cybersecurity.

Read More →
LEGAL IT

Jordan Polasek's Strategic Approach to IT Consulting for Texas Law Firms — BVTech LLC

As Jordan Polasek, Founder of BVTech LLC, I've spent two decades helping businesses across Texas navigate their technology challenges. But there's someth

Read More →
SUGAR LAND

IT Services Near Me — Expert Managed IT in Sugar Land

TL;DR: Sugar Land businesses seeking reliable IT services near me can partner with BVTech.org's Jordan Polasek for comprehensive managed IT solutions, cybe

Read More →

Ready to Get Started?

Get a free consultation with Jordan Polasek, founder of BVTech LLC — an award-winning, AWS-certified cloud & cybersecurity specialist with ethical-hacker security training and two decades of Texas IT experience. Zero pressure, real answers.

help@bvtech.org