Security insights
The blog.
Analysis of the latest vulnerabilities and threats, prioritized for Saudi finance.
CVE-2026-34621: Adobe Reader Zero-Day Targets Saudi Financial PDFs
20 Apr 2026
824,000 Customers Exposed: Marquis-SonicWall Lessons for Saudi Banks
20 Apr 2026
CVE-2026-32201: SharePoint Zero-Day Exploited — A Direct Threat to Saudi Banks
19 Apr 2026
CVE-2026-1281 & CVE-2026-1340: The Ivanti EPMM Zero-Days Putting Saudi Bank MDM Fleets at Risk
19 Apr 2026
CVE-2026-34197: The 13-Year-Old Apache ActiveMQ Flaw Now Under Active Exploitation — Saudi Financial Institutions Have Until April 30
19 Apr 2026
REF6598 & PHANTOMPULSE: How Hackers Are Weaponizing Obsidian's Plugin Ecosystem to Breach Financial Sector Employees
19 Apr 2026
McGraw-Hill's 13.5M-Record Salesforce Breach: Why Cloud Misconfiguration Is the Silent SAMA CSCC Compliance Failure
19 Apr 2026
NIST Stops Scoring Most CVEs: What Saudi Financial Institutions Must Do Before Their Next SAMA Audit
19 Apr 2026
ClawHavoc: How 1,184 Malicious AI Agent Skills Are Harvesting Credentials from Financial Sector Employees
19 Apr 2026
ShinyHunters Breach Anodot to Compromise Dozens of Snowflake Accounts: A Supply Chain Wake-Up Call for Saudi Financial Institutions
19 Apr 2026
Payouts King Ransomware Hides Inside QEMU Virtual Machines to Evade Your EDR — A Critical Alert for Saudi Financial Institutions
19 Apr 2026
CVE-2026-21643: The Fortinet FortiClient EMS Zero-Auth SQL Injection CISA Is Flagging — Action Required for Saudi Financial Institutions
19 Apr 2026