<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>Breachroad — cybersecurity &amp; AI blog</title><description>News, analysis and how-tos: vulnerabilities, ransomware, phishing, data breaches, cloud and AI security.</description><link>https://breachroad.com/</link><language>en-US</language><item><title>Free website security scanner — check in seconds</title><link>https://breachroad.com/en/blog/free-website-security-scanner/</link><guid isPermaLink="true">https://breachroad.com/en/blog/free-website-security-scanner/</guid><description>We launched a free, stateless website security scanner. It checks HTTPS, headers, cookies, SPF/DMARC and more — with no data stored. See what it can do.</description><pubDate>Sat, 04 Jul 2026 00:00:00 GMT</pubDate><category>Tools</category></item><item><title>How to read your scan results and fix the issues</title><link>https://breachroad.com/en/blog/how-to-read-scan-results/</link><guid isPermaLink="true">https://breachroad.com/en/blog/how-to-read-scan-results/</guid><description>You scanned your site and see a grade and a list of issues — now what? We explain every finding type and show how to fix it, concretely.</description><pubDate>Sat, 04 Jul 2026 00:00:00 GMT</pubDate><category>Tools</category></item><item><title>OSINT: what attackers know about you before they strike</title><link>https://breachroad.com/en/blog/osint-what-attackers-know/</link><guid isPermaLink="true">https://breachroad.com/en/blog/osint-what-attackers-know/</guid><description>Before an attack lands, a criminal does reconnaissance. We show what OSINT reveals about your company and how to shrink your digital footprint.</description><pubDate>Fri, 03 Jul 2026 00:00:00 GMT</pubDate><category>Pentest</category></item><item><title>How to prepare for a penetration test</title><link>https://breachroad.com/en/blog/how-to-prepare-for-a-penetration-test/</link><guid isPermaLink="true">https://breachroad.com/en/blog/how-to-prepare-for-a-penetration-test/</guid><description>A well-prepared penetration test delivers more value for the same money. How the process works, what to agree up front and how to read the report.</description><pubDate>Thu, 02 Jul 2026 00:00:00 GMT</pubDate><category>Pentest</category></item><item><title>AI agents: automation without losing control</title><link>https://breachroad.com/en/blog/ai-agents-business-automation/</link><guid isPermaLink="true">https://breachroad.com/en/blog/ai-agents-business-automation/</guid><description>AI agents carry out tasks, not just answer questions. Where agentic automation pays off, how to roll it out in stages and how to keep control.</description><pubDate>Wed, 01 Jul 2026 00:00:00 GMT</pubDate><category>AI in business</category></item><item><title>Critical CVEs of 2026: when exploits beat the patch</title><link>https://breachroad.com/en/blog/critical-cves-2026-review/</link><guid isPermaLink="true">https://breachroad.com/en/blog/critical-cves-2026-review/</guid><description>2026 confirms a worrying trend: vulnerabilities are exploited faster than vendors ship patches. What it means for defence and how to keep up.</description><pubDate>Tue, 30 Jun 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>NIS2 in Poland: new obligations and 2026 deadlines</title><link>https://breachroad.com/en/blog/nis2-poland-obligations/</link><guid isPermaLink="true">https://breachroad.com/en/blog/nis2-poland-obligations/</guid><description>The amended KSC act implements NIS2 and applies from 3 April 2026. We explain who it covers, the deadlines and what you need to do.</description><pubDate>Sun, 28 Jun 2026 00:00:00 GMT</pubDate><category>Compliance</category></item><item><title>Passkeys: why passwords are on the way out</title><link>https://breachroad.com/en/blog/passkeys-passwordless-future/</link><guid isPermaLink="true">https://breachroad.com/en/blog/passkeys-passwordless-future/</guid><description>Passkeys remove passwords and are phishing-resistant. We explain how they work, how they differ from MFA and how to start rolling them out.</description><pubDate>Thu, 25 Jun 2026 00:00:00 GMT</pubDate><category>Authentication</category></item><item><title>A customer AI chatbot: secure deployment guide</title><link>https://breachroad.com/en/blog/secure-ai-chatbot-deployment/</link><guid isPermaLink="true">https://breachroad.com/en/blog/secure-ai-chatbot-deployment/</guid><description>A chatbot can take real load off customer service — or embarrass the brand with one answer. A guide to a secure rollout, from architecture to testing.</description><pubDate>Wed, 24 Jun 2026 00:00:00 GMT</pubDate><category>AI in business</category></item><item><title>A deepfake celebrity promoting an investment is a scam</title><link>https://breachroad.com/en/blog/deepfake-investment-scams/</link><guid isPermaLink="true">https://breachroad.com/en/blog/deepfake-investment-scams/</guid><description>Fake ads featuring well-known people are flooding social media. We explain how deepfake investment fraud works and how to recognise it.</description><pubDate>Mon, 22 Jun 2026 00:00:00 GMT</pubDate><category>Deepfake</category></item><item><title>Security monitoring for SMEs: where to start</title><link>https://breachroad.com/en/blog/security-monitoring-for-smes/</link><guid isPermaLink="true">https://breachroad.com/en/blog/security-monitoring-for-smes/</guid><description>You don&apos;t need a million-dollar SOC to detect attacks. How a mid-sized company builds monitoring: what to log, what to alert on, when to get help.</description><pubDate>Sun, 21 Jun 2026 00:00:00 GMT</pubDate><category>Monitoring</category></item><item><title>Quishing: phishing hidden in QR codes</title><link>https://breachroad.com/en/blog/quishing-qr-code-phishing/</link><guid isPermaLink="true">https://breachroad.com/en/blog/quishing-qr-code-phishing/</guid><description>A QR code slips past email filters and leads to a fake page straight from your phone. We explain how quishing works and how to defend against it.</description><pubDate>Sat, 20 Jun 2026 00:00:00 GMT</pubDate><category>Phishing</category></item><item><title>SIM swapping: how criminals hijack your number</title><link>https://breachroad.com/en/blog/sim-swapping-attack/</link><guid isPermaLink="true">https://breachroad.com/en/blog/sim-swapping-attack/</guid><description>A SIM swap lets criminals take over your phone number — and with it your texts, codes and accounts. How it works, how to spot it and how to protect yourself.</description><pubDate>Fri, 19 Jun 2026 00:00:00 GMT</pubDate><category>Fraud</category></item><item><title>New critical vulnerabilities — how not to drown in CVEs</title><link>https://breachroad.com/en/blog/critical-vulnerabilities-how-to-prioritise/</link><guid isPermaLink="true">https://breachroad.com/en/blog/critical-vulnerabilities-how-to-prioritise/</guid><description>Dozens of new vulnerabilities are published every day. We show how to tell the ones that actually affect you from the noise.</description><pubDate>Thu, 18 Jun 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Fake KSeF and gov.pl notifications target businesses</title><link>https://breachroad.com/en/blog/ksef-gov-phishing-businesses/</link><guid isPermaLink="true">https://breachroad.com/en/blog/ksef-gov-phishing-businesses/</guid><description>Criminals impersonate KSeF, e-government and gov.pl domains to target company finance teams. What this phishing looks like and how to secure it.</description><pubDate>Thu, 18 Jun 2026 00:00:00 GMT</pubDate><category>Phishing</category></item><item><title>Microsoft 365 security: 10 settings to start with</title><link>https://breachroad.com/en/blog/microsoft-365-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/microsoft-365-security/</guid><description>Microsoft 365 is the heart of most companies — and the top target of account attacks. Ten configurations that close common takeover paths.</description><pubDate>Tue, 16 Jun 2026 00:00:00 GMT</pubDate><category>Cloud</category></item><item><title>Fake mObywatel fine: how one SMS can drain your account</title><link>https://breachroad.com/en/blog/fake-mobywatel-fine-sms/</link><guid isPermaLink="true">https://breachroad.com/en/blog/fake-mobywatel-fine-sms/</guid><description>A campaign impersonating mObywatel uses sender spoofing and a fake 200 PLN fine. We explain why it looks so convincing and how not to fall for it.</description><pubDate>Mon, 15 Jun 2026 00:00:00 GMT</pubDate><category>Smishing</category></item><item><title>Business Email Compromise: the costliest scam</title><link>https://breachroad.com/en/blog/business-email-compromise/</link><guid isPermaLink="true">https://breachroad.com/en/blog/business-email-compromise/</guid><description>BEC is one of the most expensive scams for companies. We explain how invoice fraud and the &apos;urgent CEO transfer&apos; work — and how to stop them.</description><pubDate>Sun, 14 Jun 2026 00:00:00 GMT</pubDate><category>Scams</category></item><item><title>MFA at work: how to roll it out so it works</title><link>https://breachroad.com/en/blog/mfa-how-to-roll-out/</link><guid isPermaLink="true">https://breachroad.com/en/blog/mfa-how-to-roll-out/</guid><description>MFA is the cheapest risk reduction we know — but only when deployed well. The differences between methods, a staged rollout plan and common traps.</description><pubDate>Fri, 12 Jun 2026 00:00:00 GMT</pubDate><category>Authentication</category></item><item><title>Infostealers: the malware that steals all your passwords</title><link>https://breachroad.com/en/blog/infostealer-malware/</link><guid isPermaLink="true">https://breachroad.com/en/blog/infostealer-malware/</guid><description>Infostealers are the most common malware stealing passwords, cookies and wallets. How they infect, why they bypass MFA and how to protect yourself.</description><pubDate>Thu, 11 Jun 2026 00:00:00 GMT</pubDate><category>Malware</category></item><item><title>Software supply chain attacks, explained</title><link>https://breachroad.com/en/blog/software-supply-chain-attacks/</link><guid isPermaLink="true">https://breachroad.com/en/blog/software-supply-chain-attacks/</guid><description>A single dependency can compromise thousands of companies at once. We explain how supply chain attacks work and how to limit dependency risk.</description><pubDate>Thu, 11 Jun 2026 00:00:00 GMT</pubDate><category>Supply chain</category></item><item><title>Ransomware: how to actually defend, not just pay</title><link>https://breachroad.com/en/blog/ransomware-how-to-defend/</link><guid isPermaLink="true">https://breachroad.com/en/blog/ransomware-how-to-defend/</guid><description>Ransomware attacks rarely start with encryption. We break the attack chain into its parts and show where it&apos;s cheapest to break it.</description><pubDate>Tue, 09 Jun 2026 00:00:00 GMT</pubDate><category>Ransomware</category></item><item><title>Backups: the 3-2-1 strategy in practice</title><link>https://breachroad.com/en/blog/backup-strategy-3-2-1/</link><guid isPermaLink="true">https://breachroad.com/en/blog/backup-strategy-3-2-1/</guid><description>A backup nobody has tested is just an assumption. The 3-2-1 rule, immutable copies that survive ransomware and restores that actually work.</description><pubDate>Sat, 06 Jun 2026 00:00:00 GMT</pubDate><category>Business continuity</category></item><item><title>BLIK SMS spoofing: how one link hijacks your banking</title><link>https://breachroad.com/en/blog/blik-sms-spoofing-banking-takeover/</link><guid isPermaLink="true">https://breachroad.com/en/blog/blik-sms-spoofing-banking-takeover/</guid><description>An intensive campaign impersonates BLIK using SMS spoofing and fake login panels. We show how criminals take over online banking and how to break the chain.</description><pubDate>Fri, 05 Jun 2026 00:00:00 GMT</pubDate><category>Banking</category></item><item><title>WordPress security: 10 steps for site owners</title><link>https://breachroad.com/en/blog/wordpress-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/wordpress-security/</guid><description>WordPress powers most of the web and is the top target for attacks. Ten practical steps to secure your site — no coding knowledge required.</description><pubDate>Fri, 05 Jun 2026 00:00:00 GMT</pubDate><category>Web security</category></item><item><title>Kubernetes security: where to start</title><link>https://breachroad.com/en/blog/kubernetes-container-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/kubernetes-container-security/</guid><description>Kubernetes gives huge flexibility and an equally large attack surface. We cover the most common mistakes — RBAC, secrets, networking — and hardening priorities.</description><pubDate>Tue, 02 Jun 2026 00:00:00 GMT</pubDate><category>DevSecOps</category></item><item><title>&apos;Your bank is calling&apos; — vishing and caller-ID spoofing</title><link>https://breachroad.com/en/blog/vishing-fake-bank-employee/</link><guid isPermaLink="true">https://breachroad.com/en/blog/vishing-fake-bank-employee/</guid><description>A call from the bank&apos;s number, a calm &apos;consultant&apos; and a supposed break-in on your account. We break down the fake-bank-employee scam and how to stop it.</description><pubDate>Mon, 01 Jun 2026 00:00:00 GMT</pubDate><category>Vishing</category></item><item><title>DORA: what it really requires of financial firms</title><link>https://breachroad.com/en/blog/dora-financial-sector-requirements/</link><guid isPermaLink="true">https://breachroad.com/en/blog/dora-financial-sector-requirements/</guid><description>DORA has applied since January 2025 and covers far more than banks. The five pillars, mandatory resilience testing and ICT supplier duties.</description><pubDate>Sun, 31 May 2026 00:00:00 GMT</pubDate><category>Compliance</category></item><item><title>API security: the OWASP API Top 10 in practice</title><link>https://breachroad.com/en/blog/api-security-owasp-top-10/</link><guid isPermaLink="true">https://breachroad.com/en/blog/api-security-owasp-top-10/</guid><description>APIs are now the most common target for application attacks. We cover the key OWASP API Top 10 flaws — led by BOLA — and how to avoid them.</description><pubDate>Sat, 30 May 2026 00:00:00 GMT</pubDate><category>API</category></item><item><title>Phishing in 2026: why training alone isn&apos;t enough</title><link>https://breachroad.com/en/blog/phishing-why-training-is-not-enough/</link><guid isPermaLink="true">https://breachroad.com/en/blog/phishing-why-training-is-not-enough/</guid><description>Phishing still accounts for most successful breaches. We explain why employee education alone isn&apos;t enough and what to add to your defences.</description><pubDate>Thu, 28 May 2026 00:00:00 GMT</pubDate><category>Phishing</category></item><item><title>Safe online shopping: how not to lose money</title><link>https://breachroad.com/en/blog/safe-online-shopping/</link><guid isPermaLink="true">https://breachroad.com/en/blog/safe-online-shopping/</guid><description>Fake shops, spoofed payments and intercepted cards. A practical guide to spotting a fraudulent store and paying safely online.</description><pubDate>Thu, 28 May 2026 00:00:00 GMT</pubDate><category>Guide</category></item><item><title>Third-party risk management (TPRM): a guide</title><link>https://breachroad.com/en/blog/third-party-risk-management/</link><guid isPermaLink="true">https://breachroad.com/en/blog/third-party-risk-management/</guid><description>Your security ends at your weakest supplier. How to assess contractor risk, what to put in contracts and how to monitor suppliers efficiently.</description><pubDate>Mon, 25 May 2026 00:00:00 GMT</pubDate><category>Supply chain</category></item><item><title>Has my data leaked? How to check and what to do</title><link>https://breachroad.com/en/blog/check-if-your-data-leaked/</link><guid isPermaLink="true">https://breachroad.com/en/blog/check-if-your-data-leaked/</guid><description>Your passwords and data are almost certainly in some breach. How to check it safely, what a leak really means and what steps to take.</description><pubDate>Fri, 22 May 2026 00:00:00 GMT</pubDate><category>Data breaches</category></item><item><title>Shadow IT: the apps IT doesn&apos;t know about</title><link>https://breachroad.com/en/blog/shadow-it-uncontrolled-apps/</link><guid isPermaLink="true">https://breachroad.com/en/blog/shadow-it-uncontrolled-apps/</guid><description>Employees use several times more applications than IT has approved. Where shadow IT comes from, what it risks and how to control it without bans.</description><pubDate>Thu, 21 May 2026 00:00:00 GMT</pubDate><category>Risk management</category></item><item><title>The &apos;pay a small fee&apos; parcel smishing, explained</title><link>https://breachroad.com/en/blog/parcel-delivery-smishing/</link><guid isPermaLink="true">https://breachroad.com/en/blog/parcel-delivery-smishing/</guid><description>Fake SMS about a delivery surcharge is one of Poland&apos;s most common phishing scenarios. We break it down and explain why the tiny fee is deliberate.</description><pubDate>Wed, 20 May 2026 00:00:00 GMT</pubDate><category>Smishing</category></item><item><title>OWASP Top 10: the most common web app flaws</title><link>https://breachroad.com/en/blog/owasp-top-10-web-apps/</link><guid isPermaLink="true">https://breachroad.com/en/blog/owasp-top-10-web-apps/</guid><description>A guide to the OWASP Top 10 for teams that want to understand real risks — from broken access control, through injection, to SSRF.</description><pubDate>Mon, 18 May 2026 00:00:00 GMT</pubDate><category>AppSec</category></item><item><title>Vulnerability management: how to build the process</title><link>https://breachroad.com/en/blog/vulnerability-management-process/</link><guid isPermaLink="true">https://breachroad.com/en/blog/vulnerability-management-process/</guid><description>The scanner is the easy part. How to build the full process: inventory, risk-based prioritisation, remediation SLAs and metrics that matter.</description><pubDate>Sun, 17 May 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Cloud security: the 5 configuration mistakes we see most often</title><link>https://breachroad.com/en/blog/cloud-security-common-mistakes/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cloud-security-common-mistakes/</guid><description>Most cloud breaches don&apos;t come from the provider&apos;s flaws, but from the customer&apos;s misconfiguration. Here are the five most common traps.</description><pubDate>Fri, 15 May 2026 00:00:00 GMT</pubDate><category>Cloud</category></item><item><title>Smartphone security: 12 settings worth changing</title><link>https://breachroad.com/en/blog/smartphone-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/smartphone-security/</guid><description>Your phone knows more about you than your computer. Twelve practical settings and habits that genuinely protect your data, accounts and privacy.</description><pubDate>Thu, 14 May 2026 00:00:00 GMT</pubDate><category>Guide</category></item><item><title>Secure remote work: a standard, not an exception</title><link>https://breachroad.com/en/blog/remote-work-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/remote-work-security/</guid><description>Remote work is here to stay — and with it company data on home networks and private hardware. A practical standard: devices, access, Wi-Fi.</description><pubDate>Tue, 12 May 2026 00:00:00 GMT</pubDate><category>Remote work</category></item><item><title>OLX and Vinted: fake payment gateways, explained</title><link>https://breachroad.com/en/blog/olx-vinted-fake-payment-scams/</link><guid isPermaLink="true">https://breachroad.com/en/blog/olx-vinted-fake-payment-scams/</guid><description>Impersonations of OLX and Vinted are among the most reported scams in Poland. We explain the &apos;safe payment&apos; mechanism that actually robs the seller.</description><pubDate>Sun, 10 May 2026 00:00:00 GMT</pubDate><category>Scams</category></item><item><title>Active Directory security: what we check first</title><link>https://breachroad.com/en/blog/active-directory-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/active-directory-security/</guid><description>Active Directory is the top target once inside a network. We cover common attack paths — Kerberoasting, excessive privileges — and how to close them.</description><pubDate>Fri, 08 May 2026 00:00:00 GMT</pubDate><category>Hardening</category></item><item><title>VPN: myths and facts. Does it really protect you?</title><link>https://breachroad.com/en/blog/vpn-myths-and-facts/</link><guid isPermaLink="true">https://breachroad.com/en/blog/vpn-myths-and-facts/</guid><description>Ads promise a VPN gives anonymity and total security. We explain what a VPN really does, what it doesn&apos;t protect against and when it&apos;s worth using.</description><pubDate>Thu, 07 May 2026 00:00:00 GMT</pubDate><category>Privacy</category></item><item><title>Data breach: the first 72 hours decide everything</title><link>https://breachroad.com/en/blog/data-breach-first-72-hours/</link><guid isPermaLink="true">https://breachroad.com/en/blog/data-breach-first-72-hours/</guid><description>What to do when a data breach happens — from confirming the incident, through limiting the impact, to GDPR obligations.</description><pubDate>Wed, 06 May 2026 00:00:00 GMT</pubDate><category>Data breaches</category></item><item><title>A password manager for business: choose and deploy</title><link>https://breachroad.com/en/blog/password-managers-for-business/</link><guid isPermaLink="true">https://breachroad.com/en/blog/password-managers-for-business/</guid><description>Shared passwords in a spreadsheet are a ticking bomb. How a business password manager works, how to choose one and roll it out to teams.</description><pubDate>Sun, 03 May 2026 00:00:00 GMT</pubDate><category>Authentication</category></item><item><title>Scams targeting seniors: how to protect loved ones</title><link>https://breachroad.com/en/blog/scams-targeting-seniors/</link><guid isPermaLink="true">https://breachroad.com/en/blog/scams-targeting-seniors/</guid><description>Seniors are fraudsters&apos; most common target: fake grandchild, police or bank staff. Learn the schemes and how to protect parents and grandparents.</description><pubDate>Thu, 30 Apr 2026 00:00:00 GMT</pubDate><category>Fraud</category></item><item><title>Zero Trust: the end of the trusted internal network</title><link>https://breachroad.com/en/blog/zero-trust-security/</link><guid isPermaLink="true">https://breachroad.com/en/blog/zero-trust-security/</guid><description>The &apos;hard shell, soft centre&apos; model no longer works. We explain what Zero Trust is, where to start a rollout and what to avoid.</description><pubDate>Thu, 30 Apr 2026 00:00:00 GMT</pubDate><category>Architecture</category></item><item><title>&apos;Send me a BLIK code&apos;: Facebook account takeovers</title><link>https://breachroad.com/en/blog/facebook-account-takeover-blik-code/</link><guid isPermaLink="true">https://breachroad.com/en/blog/facebook-account-takeover-blik-code/</guid><description>A hacked friend&apos;s account asks for a BLIK code or a scan of your ID. We explain how account takeovers happen and why the chain of trust is the weakest link.</description><pubDate>Tue, 28 Apr 2026 00:00:00 GMT</pubDate><category>Scams</category></item><item><title>GDPR in IT practice: technical security measures</title><link>https://breachroad.com/en/blog/gdpr-technical-security-measures/</link><guid isPermaLink="true">https://breachroad.com/en/blog/gdpr-technical-security-measures/</guid><description>&apos;Appropriate technical measures&apos; — but which exactly? GDPR Article 32 as an IT checklist: encryption, access, logs, backups and testing.</description><pubDate>Sun, 26 Apr 2026 00:00:00 GMT</pubDate><category>GDPR</category></item><item><title>Identity theft: how to protect yourself and respond</title><link>https://breachroad.com/en/blog/identity-theft-protection/</link><guid isPermaLink="true">https://breachroad.com/en/blog/identity-theft-protection/</guid><description>Stolen personal data lets criminals take out loans or register a company in your name. How identity theft happens and how to protect yourself.</description><pubDate>Thu, 23 Apr 2026 00:00:00 GMT</pubDate><category>Identity</category></item><item><title>AI security: new risks when an LLM enters the company</title><link>https://breachroad.com/en/blog/ai-security-llm-in-business/</link><guid isPermaLink="true">https://breachroad.com/en/blog/ai-security-llm-in-business/</guid><description>Deploying language models opens up a class of threats that classic applications never knew. We cover prompt injection, data leakage and over-privileged agents.</description><pubDate>Wed, 22 Apr 2026 00:00:00 GMT</pubDate><category>AI security</category></item><item><title>CVE-2026-35616: critical Fortinet FortiClient EMS flaw</title><link>https://breachroad.com/en/blog/cve-2026-35616-fortinet-forticlient-ems/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cve-2026-35616-fortinet-forticlient-ems/</guid><description>CVE-2026-35616 (CVSS 9.8) in Fortinet FortiClient EMS is actively exploited and in the CISA KEV. We explain the threat and how to respond.</description><pubDate>Mon, 20 Apr 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>CVE-2026-33827: a wormable Windows TCP/IP flaw</title><link>https://breachroad.com/en/blog/cve-2026-33827-windows-tcpip/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cve-2026-33827-windows-tcpip/</guid><description>A critical RCE in the Windows TCP/IP stack, remote and with no user interaction — potentially self-spreading. We explain the risk and the patching priority.</description><pubDate>Thu, 16 Apr 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Small business cybersecurity: a 90-day plan</title><link>https://breachroad.com/en/blog/small-business-cybersecurity/</link><guid isPermaLink="true">https://breachroad.com/en/blog/small-business-cybersecurity/</guid><description>A small company doesn&apos;t need a security department to stop being an easy target. A 90-day plan: what to do in-house, what to buy, what to outsource.</description><pubDate>Thu, 16 Apr 2026 00:00:00 GMT</pubDate><category>SMB</category></item><item><title>CVE-2026-32201: an exploited SharePoint zero-day</title><link>https://breachroad.com/en/blog/cve-2026-32201-sharepoint/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cve-2026-32201-sharepoint/</guid><description>SharePoint is targeted again: CVE-2026-32201 scores &apos;only&apos; 6.5 in CVSS but is actively exploited and in the KEV — proof the score isn&apos;t everything.</description><pubDate>Wed, 15 Apr 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Strong passwords: busting the myths, showing what works</title><link>https://breachroad.com/en/blog/strong-passwords-myths/</link><guid isPermaLink="true">https://breachroad.com/en/blog/strong-passwords-myths/</guid><description>Change your password every 30 days? Invent complex character strings? We explain which password rules are outdated myths and what really protects your accounts.</description><pubDate>Wed, 15 Apr 2026 00:00:00 GMT</pubDate><category>Authentication</category></item><item><title>Hardening Linux servers: where to actually start</title><link>https://breachroad.com/en/blog/linux-hardening-basics/</link><guid isPermaLink="true">https://breachroad.com/en/blog/linux-hardening-basics/</guid><description>A practical guide to hardening Linux servers — no copying hundred-item checklists, with an emphasis on the highest-impact actions.</description><pubDate>Fri, 10 Apr 2026 00:00:00 GMT</pubDate><category>Hardening</category></item><item><title>The ransomware wave hitting Polish hospitals in 2026</title><link>https://breachroad.com/en/blog/ransomware-polish-hospitals-2026/</link><guid isPermaLink="true">https://breachroad.com/en/blog/ransomware-polish-hospitals-2026/</guid><description>In spring 2026 several Polish hospitals were hit by ransomware in quick succession. Why healthcare is a target and how to limit the impact.</description><pubDate>Fri, 10 Apr 2026 00:00:00 GMT</pubDate><category>Ransomware</category></item><item><title>Children&apos;s online safety: a guide for parents</title><link>https://breachroad.com/en/blog/kids-online-safety/</link><guid isPermaLink="true">https://breachroad.com/en/blog/kids-online-safety/</guid><description>How to protect your child online without surveillance and bans? A practical guide to the risks, parental control settings and the conversation that works.</description><pubDate>Thu, 09 Apr 2026 00:00:00 GMT</pubDate><category>Guide</category></item><item><title>SPF, DKIM and DMARC: how to secure your company email</title><link>https://breachroad.com/en/blog/spf-dkim-dmarc-guide/</link><guid isPermaLink="true">https://breachroad.com/en/blog/spf-dkim-dmarc-guide/</guid><description>Without SPF, DKIM and DMARC anyone can send emails impersonating your domain. We explain these three mechanisms simply and show how to deploy them.</description><pubDate>Thu, 02 Apr 2026 00:00:00 GMT</pubDate><category>Email security</category></item><item><title>Attack on the energy sector and NoName057 DDoS</title><link>https://breachroad.com/en/blog/energy-sector-attack-ddos-noname/</link><guid isPermaLink="true">https://breachroad.com/en/blog/energy-sector-attack-ddos-noname/</guid><description>A destructive attack on Poland&apos;s energy sector and pro-Russian DDoS show critical infrastructure is a target — what it means for companies.</description><pubDate>Thu, 05 Feb 2026 00:00:00 GMT</pubDate><category>Critical infrastructure</category></item><item><title>CVE-2026-1281: a critical Ivanti EPMM zero-day</title><link>https://breachroad.com/en/blog/cve-2026-1281-ivanti-epmm/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cve-2026-1281-ivanti-epmm/</guid><description>Ivanti EPMM was hit by a zero-day exploited before disclosure (CVE-2026-1281 and 1340). We explain who&apos;s affected and what to do right now.</description><pubDate>Fri, 30 Jan 2026 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Cyberattacks on Poland in 2025: what the year showed</title><link>https://breachroad.com/en/blog/cyberattacks-on-poland-2025/</link><guid isPermaLink="true">https://breachroad.com/en/blog/cyberattacks-on-poland-2025/</guid><description>2025 was a record year for Poland: attacks on hospitals, DDoS on infrastructure and disinformation. We summarise the threats and lessons for businesses.</description><pubDate>Thu, 18 Dec 2025 00:00:00 GMT</pubDate><category>Critical infrastructure</category></item><item><title>Shai-Hulud: the first self-replicating npm worm</title><link>https://breachroad.com/en/blog/shai-hulud-npm-worm-2025/</link><guid isPermaLink="true">https://breachroad.com/en/blog/shai-hulud-npm-worm-2025/</guid><description>In autumn 2025 the Shai-Hulud worm infected hundreds of npm packages, spreading itself. We analyse the supply chain attack and how to secure your pipeline.</description><pubDate>Tue, 16 Sep 2025 00:00:00 GMT</pubDate><category>Supply chain</category></item><item><title>OAuth token theft: one vendor, hundreds of firms</title><link>https://breachroad.com/en/blog/salesforce-salesloft-oauth-token-theft-2025/</link><guid isPermaLink="true">https://breachroad.com/en/blog/salesforce-salesloft-oauth-token-theft-2025/</guid><description>In 2025, stolen OAuth tokens from Salesloft exposed hundreds of firms&apos; Salesforce data — with no cracked passwords. A lesson on integration risk.</description><pubDate>Tue, 26 Aug 2025 00:00:00 GMT</pubDate><category>Supply chain</category></item><item><title>ToolShell: the mass SharePoint 0-day attack (2025)</title><link>https://breachroad.com/en/blog/toolshell-sharepoint-cve-2025-53770/</link><guid isPermaLink="true">https://breachroad.com/en/blog/toolshell-sharepoint-cve-2025-53770/</guid><description>In summer 2025, CVE-2025-53770 in SharePoint Server let attackers take over servers with no login. We analyse the ToolShell chain and its lessons.</description><pubDate>Tue, 22 Jul 2025 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>CitrixBleed 2 (CVE-2025-5777): a gateway memory leak</title><link>https://breachroad.com/en/blog/citrixbleed2-cve-2025-5777/</link><guid isPermaLink="true">https://breachroad.com/en/blog/citrixbleed2-cve-2025-5777/</guid><description>CVE-2025-5777 let attackers pull session tokens from Citrix NetScaler gateways, bypassing MFA. We analyse CitrixBleed 2 and the defence.</description><pubDate>Wed, 25 Jun 2025 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Scattered Spider: the call that took down retail</title><link>https://breachroad.com/en/blog/scattered-spider-retail-attacks/</link><guid isPermaLink="true">https://breachroad.com/en/blog/scattered-spider-retail-attacks/</guid><description>In 2025 Scattered Spider paralysed UK retail. The weapon wasn&apos;t a 0-day but a helpdesk call. We break down the technique and the defence.</description><pubDate>Tue, 13 May 2025 00:00:00 GMT</pubDate><category>Ransomware</category></item><item><title>SAP NetWeaver (CVE-2025-31324): a login-free web shell</title><link>https://breachroad.com/en/blog/sap-netweaver-cve-2025-31324/</link><guid isPermaLink="true">https://breachroad.com/en/blog/sap-netweaver-cve-2025-31324/</guid><description>CVE-2025-31324 in SAP NetWeaver let attackers upload a web shell with no login and take over the ERP. We analyse attacks on a company&apos;s heart.</description><pubDate>Tue, 29 Apr 2025 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>Windows CLFS (CVE-2025-29824): an escalation 0-day</title><link>https://breachroad.com/en/blog/windows-clfs-cve-2025-29824/</link><guid isPermaLink="true">https://breachroad.com/en/blog/windows-clfs-cve-2025-29824/</guid><description>CVE-2025-29824 is another 0-day in the Windows CLFS driver, used by ransomware to seize SYSTEM. Why this class of flaw returns and how to limit the risk.</description><pubDate>Tue, 08 Apr 2025 00:00:00 GMT</pubDate><category>Vulnerabilities</category></item><item><title>The Bybit heist: $1.5bn and a cold-wallet lesson</title><link>https://breachroad.com/en/blog/bybit-largest-heist-in-history/</link><guid isPermaLink="true">https://breachroad.com/en/blog/bybit-largest-heist-in-history/</guid><description>In February 2025, $1.5bn in crypto vanished from Bybit. We break down the Lazarus attack and what failed despite a cold wallet.</description><pubDate>Mon, 24 Feb 2025 00:00:00 GMT</pubDate><category>Data breaches</category></item></channel></rss>