πŸ“° BVTech News β€” Cybersecurity Intelligence

Daily cybersecurity vulnerability reports, threat intelligence, and expert remediation guidance from Jordan Polasek, Founder of BVTech LLC. Real CVEs sourced from CISA KEV and NVD β€” analyzed for Texas businesses.

πŸ›‘οΈ Weekly Threat Intelligence β€” Now in its tenth edition

This Week in Cybersecurity

Fresh CISA KEV analysis with real remediation steps. Written personally by Jordan Polasek every Sunday β€” plus a mid-week supplement when the catalog gets noisy. Drawing on two decades of Texas technology experience.

πŸ”΄ KEV ALERT Β· DAILY BRIEFING July 18 Β· 6 min read Β· Jordan Polasek

A Heavy Week of KEV Additions: SharePoint, FortiSandbox, and SonicWall Under Fire β€” July 18, 2026

A Heavy Week of KEV Additions: SharePoint, FortiSandbox, and SonicWall Under Fire β€” July 18, 2026 | Jordan Polasek | BVTech LLC /* BVTech v28 critical CSS…

πŸ”΄ KEV ALERT Β· DAILY BRIEFING July 17 Β· 6 min read Β· Jordan Polasek

SharePoint and FortiSandbox Under Attack β€” July 17, 2026

SharePoint and FortiSandbox Under Attack β€” July 17, 2026 | Jordan Polasek | BVTech LLC /* BVTech v28 critical CSS β€” inline safety net */ .header-logo…

πŸ”΄ KEV ALERT Β· DAILY BRIEFING July 16 Β· 6 min read Β· Jordan Polasek

BVTech News β€” SharePoint Again, and FortiSandbox Twice: Three New KEV Entries With 3-Day Deadlines

CISA added three vulnerabilities to the KEV catalog on July 16, 2026: a Microsoft SharePoint deserialization flaw (CVE-2026-58644) and two Fortinet FortiSandbox command-injection flaws (CVE-2026-25089, CVE-2026-39808) —…

KEV ALERT July 15 Β· 9 min read Β· Jordan Polasek

BVTech News – Six New KEV Entries Hit This Week (July 15, 2026)

CVE-2026-20253 is a critical (CVSS 9.8) missing-authentication flaw in Splunk Enterprise β€” confirmed exploited in the wild and added to CISA's KEV list on July 15 with a three-day federal deadline. It's the first Splunk vulnerability ever on the KEV catalog. Why a hole in your security tooling is uniquely dangerous, the punishing patch-to-exploit timeline, plus this week's Cisco SD-WAN and LiteSpeed cPanel additions.

CVE-2026-20253 Splunk Enterprise CISA KEV SIEM Missing Auth
Read the Full Breakdown β†’
KEV ALERT June 20 Β· 9 min read Β· Jordan Polasek

Splunk's First-Ever CISA KEV Entry (CVE-2026-20253) β€” A Critical SIEM Flaw With a 3-Day Deadline

CVE-2026-20253 is a critical (CVSS 9.8) missing-authentication flaw in Splunk Enterprise β€” confirmed exploited in the wild and added to CISA's KEV list on April 5 with a three-day federal deadline. It's the first Splunk vulnerability ever on the KEV catalog. Why a hole in your security tooling is uniquely dangerous, the punishing patch-to-exploit timeline, plus this week's Cisco SD-WAN and LiteSpeed cPanel additions.

CVE-2026-20253 Splunk Enterprise CISA KEV SIEM Missing Auth
Read the Full Breakdown β†’
ZERO-DAY ALERT June 11 Β· 9 min read Β· Jordan Polasek

The Fifth Chrome Zero-Day of 2026 (CVE-2026-11645) β€” Why Updating Isn't Enough

CVE-2026-11645 is a high-severity flaw in Chrome's V8 engine, confirmed exploited in the wild and added to CISA's KEV list on April 5 with a June 23 federal deadline. The catch most teams miss: updating Chrome doesn't protect you until you relaunch the browser. Plus the Cisco SD-WAN and Arista EOS additions from the same batch, and what a proactive setup does about a week like this.

CVE-2026-11645 Chrome V8 CISA KEV Cisco SD-WAN Patch Management
Read the Full Breakdown β†’
AI & INDUSTRY June 20 Β· 8 min read Β· Jordan Polasek

Claude Fable 5 and the Frontier-Model Moment β€” What It Means for Small Business

Anthropic released its first public "Mythos-class" model β€” state-of-the-art, and good enough at finding software flaws that it ships with safeguards blocking high-risk cybersecurity and biology questions. The hype, the substance, and the honest answer to the only question that matters for an owner: does this actually change anything for me?

Claude Fable 5 Mythos Frontier AI AI Security
Read Jordan's Take β†’
SPECIAL REPORT Β· FREE PDF June 4 Β· 14 min read Β· Jordan Polasek

Data Poisoning Is the Defender's New Weapon β€” Plus Our Free 2026–2027 Cybersecurity Report

One of the defining security stories of 2026, in plain English: a month-by-month look at the year's real breaches, how artists poison their own work with Glaze and Nightshade, how websites trap rogue AI crawlers, the new agentic-AI attack surface and AI governance, and why honeypots are the best low-effort defense a small business has. Plus our new free, shareable field manual β€” 67 pages, no email wall.

Data Poisoning Nightshade Glaze Tarpits Free Report
Read It & Download the Free Report β†’
MID-WEEK INTEL December 15 Β· 10 min read Β· Jordan Polasek

Mid-Week Intel: Drupal SQL Injection on KEV, Microsoft Defender Double, and Cisco Catalyst SD-WAN Emergency Directive 26-03 β€” Jordan Polasek

CISA added Drupal Core CVE-2026-9082 to KEV today after exploitation began within days of the patch. The May 20 Microsoft Defender double, the May 14 Cisco Catalyst SD-WAN Controller authentication bypass (covered by…

CVE-2026-9082 CVE-2026-41091 CVE-2026-20182 Drupal Defender ED 26-03
Read Jordan's Full Analysis β†’
SUNDAY RECAP Β· AI STACK December 15 Β· 9 min read

Langflow Origin Validation Flaw and Trend Micro Apex One Directory Traversal: When Your AI Tooling and Your Security Tooling Both Become Attack Surfaces β€” Jordan Polasek

CISA added two vulnerabilities to KEV this week β€” Langflow (an LLM workflow builder) and Trend Micro Apex One. Jordan Polasek explains what each one means for Texas SMBs, why \

CVE-2025-34291CVE-2026-34926LLM Security
DEEP DIVE December 15 Β· 11 min read

AI-Driven Phishing Is Now 41% of SMB Cyberattacks: The Numbers, the Mechanics, and What Texas Businesses Should Actually Change β€” Jordan Polasek

Forty-one percent of SMB cyberattacks in 2025 were AI-driven. Jordan Polasek breaks down what AI-assisted phishing actually looks like in Texas small business environments, why traditional anti-phishing training is…

AI PhishingDMARCBEC Defense
CVE RECAP December 15 Β· 8 min read

Ivanti EPMM Hits KEV, Cisco Catalyst SD-WAN Authentication Bypass, and the Continuing Edge-Appliance Problem β€” Jordan Polasek

Jordan Polasek breaks down the Ivanti EPMM RCE (CVE-2026-6973) formally added to CISA KEV this week, the new Cisco Catalyst SD-WAN authentication bypass (CVE-2026-42897), and why eight months of weekly recaps now read…

CVE-2026-6973Ivanti EPMMCisco SD-WAN
QUIET WEEK December 15 Β· 7 min read

A Quieter Week at CISA: Microsoft Defender Access Control Flaw, Supply-Chain Hardening, and Why "Boring" Is a Compliment in Security β€” Jordan Polasek

After two manic weeks at CISA, this week's KEV addition was a single Microsoft Defender access-control flaw. Jordan Polasek explains why boring weeks are good for Texas SMBs β€” and what to do with the spare cycles.

CVE-2026-33825Microsoft DefenderVendor Audit
12 CVEs Β· ACTIVE December 15 Β· 10 min read

Eight Vulnerabilities in One Day: Cisco Catalyst SD-WAN Manager Triple, PaperCut, JetBrains, SimpleHelp

CISA added twelve vulnerabilities to KEV this week across two major dumps, including three Cisco Catalyst SD-WAN Manager flaws, a PaperCut auth bypass used by the Clop ransomware affiliate Lace Tempest, and the…

CVE-2026-20122PaperCutSimpleHelpAkira
VINTAGE CVE December 15 Β· 9 min read

When 14-Year-Old CVEs Come Back: Microsoft VBA, Fortinet SQLi, Medusa Ransomware

CISA added six vulnerabilities to KEV this week β€” including a 14-year-old Microsoft VBA flaw and a Fortinet SQL injection being weaponized for Medusa ransomware. Jordan Polasek explains why old CVEs are still hitting…

CVE-2012-1854CVE-2026-21643Medusa Ransomware
ZERO-DAY December 15 Β· 8 min read

Fortinet FortiClient EMS Zero-Day (CVE-2026-35616), Ivanti EPMM, and the Edge-Device Problem

Jordan Polasek breaks down the Fortinet FortiClient EMS zero-day (CVE-2026-35616) added to CISA KEV this week, plus a second critical Ivanti EPMM flaw, and why edge devices remain the single most-targeted segment of…

CVE-2026-35616Fortinet EMSEdge Devices
CVE RECAP December 15 Β· 7 min read

Critical Vulnerabilities: Chrome Dawn WebGPU, Citrix NetScaler SAML, TrueConf Client β€” Patch Now

Jordan Polasek breaks down three critical CVEs added to the CISA KEV catalog this week β€” CVE-2026-5281 (Chrome Dawn WebGPU), CVE-2026-3055 (Citrix NetScaler), and the TrueConf Client integrity flaw. Remediation steps…

CVE-2026-5281CVE-2026-3055Chrome / Citrix
BVTech News cybersecurity vulnerability intelligence β€” Jordan Polasek Texas MSP
How BVTech News Works

Real Intelligence, Real Remediation

Every BVTech News post is written personally by Jordan Polasek, drawing from the CISA Known Exploited Vulnerabilities catalog, the National Vulnerability Database, and two decades of Texas technology experience. No AI slop, no rewritten press releases β€” just actionable intelligence for small and medium businesses.

  • βœ“Sourced from CISA KEV β€” authoritative list of actively exploited vulnerabilities
  • βœ“NVD-indexed β€” complete coverage of the National Vulnerability Database
  • βœ“CVSS-scored β€” every CVE ranked by real-world severity
  • βœ“SMB-focused β€” no enterprise noise, just what Texas small businesses need
  • βœ“Step-by-step remediation β€” not just alerts, actual fix guides
  • βœ“Call for help β€” BVTech responds same-day to critical incidents across Texas

Need Help with a Critical Vulnerability?

Call Jordan Polasek directly. BVTech provides emergency cybersecurity remediation for Texas businesses β€” same-day response across San Antonio, Houston, Austin, and the rest of the state.

help@bvtech.org