Adam Gardner
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Remote Code Execution via PHP-CGI Argument Injection
Intro A critical 0-day vulnerability has been identified in Ivanti Endpoint Manager Mobile (EPMM), formerly known…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — TP-Link Command Injection Failure Analysis
Intro Exploitation attempts for CVE-2023-33538 have surged following its addition to the CISA KEV catalog. While…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Fortinet EMS RCE Under Active Exploitation
Intro CVE-2026-35616 is actively being exploited in the wild. Fortinet has issued an emergency hotfix for…
-
The Ticket That Let Them In: How Support Workflows Quietly Extend Breach Dwell Time
Modern ransomware doesn’t just hide in encrypted binaries; it hides in the “Resolved” folder of an…
-
They Didn’t Break In They Logged In: The Real Problem With Modern Ransomware
Ransomware attacks aren’t smash-and-grab operations anymore. They don’t rely on noisy exploits, obvious payloads, or immediate…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Canva Affinity EMF Type Confusion Leading to RCE
Intro CVE-2025-66342 is a high-impact client-side vulnerability affecting Canva Affinity applications on Windows. Triggered through a…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — EU Sanctions Expose State-Linked Cyber Operations at Scale
Intro The European Union has sanctioned multiple Chinese and Iranian entities tied to large-scale cyber operations…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Aruba AOS-CX Authentication Bypass Enables Admin Password Reset
Intro A critical vulnerability affecting HPE Aruba Networking AOS-CX switches allows unauthenticated attackers to bypass authentication…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Cisco Catalyst SD-WAN Authentication Bypass
Intro A critical authentication bypass vulnerability (CVE-2026-20127) has been identified in Cisco Catalyst SD-WAN Controller and…
-
Cyber Pulse: Technical Threat Deep Dives on Active CVEs — Honeywell CCTV Account Takeover via Missing Authentication (CVE-2026-1670)
Intro CISA has issued a critical advisory for CVE-2026-1670 affecting multiple Honeywell CCTV models. The flaw…
Ramblings of a CyberSecurity Nerd 