Home | InfoSec.Watch

InfoSec.Watch - Issue #126

Feb 23, 2026

This week’s brief is a reminder that identity-adjacent features and device-management control planes are still prime time for exploitation. When SSO becomes an alternate auth path, and MDM sits in front of your mobile fleet, patching is only step one — validation and hunt is step two,

InfoSec.Watch - Issue #125

Feb 16, 2026

BridgePay ransomware outage + BeyondTrust pre-auth RCE scanning + a packed KEV week

InfoSec.Watch — Issue #124

Feb 9, 2026

This week’s brief is a reminder that identity-adjacent features and device-management control planes are still prime time for exploitation. When SSO becomes an alternate auth path, and MDM sits in front of your mobile fleet, patching is only step one — validation and hunt is step two.

InfoSec.Watch – Issue 123

Feb 2, 2026

FortiCloud SSO auth bypass and Ivanti EPMM pre-auth RCE are actively exploited — plus what to hunt for after patching.

InfoSec.Watch — Issue #122

Jan 26, 2026

This week’s brief reinforces a familiar truth: control planes and trusted third parties remain the fastest path to root. Unified comms, infrastructure management, and patch pipelines were all in the blast radius within days.

INFOSEC.WATCH

Actionable Cybersecurity Insights — Every Week.

Latest

InfoSec.Watch - Issue #126

InfoSec.Watch - Issue #125

InfoSec.Watch — Issue #124

InfoSec.Watch – Issue 123

InfoSec.Watch — Issue #122

Join the Watch