TheCyberThrone – Thinking Security ! Always

$2Millions Spent but Password123 Won – Fancy Fall of Security

March 5, 2026

Two Perfect 10s: Cisco FMC Under Siege

March 5, 2026

CISA adds Qualcomm and VMware Aria to KEV Catalog

March 4, 2026

CISSP Domain 1: Mastering Security and Risk Management – Blog and Podcast

March 3, 2026

Android’s Biggest Security Update Since 2018 — And an Exploit Already in the Wild

March 3, 2026

CISSP Domain 1 Wrap-Up – The Mental Model That Changes How You Think

March 2, 2026

CISSP Domain 1 – Business Impact Analysis

March 1, 2026

CISSP Domain 1 – Business Continuity vs Disaster Recovery

February 28, 2026

CVE-2026-21902 — Juniper PTX One Packet to Root Vulnerability

February 28, 2026

CISSP Playbook – Domain 5: Identity and Access Management

February 27, 2026

CISA Adds Cisco SD-WAN Vulnerabilities to KEV Catalog

February 26, 2026

Google has fixed triple high severity flaws in Chrome

February 25, 2026

CISSP Domain 1 – Ethics & the ISC² Code of Ethics

February 24, 2026

PayPal Data Breach-Six Months of Silent Exposure

February 23, 2026

CISSP Domain 1 – Why Passing Audits ≠ Being Secure

February 22, 2026

CISSP Domain 1 – Policies, Standards, Guidelines & Procedures

February 21, 2026

Microsoft CVE-2026-26119 Deep Dive

February 20, 2026

CISSP Executive Briefing on GRC

February 19, 2026

Palo Alto Intent to Bolster AI Security with Koi Acquisition

February 19, 2026

Betterment Suffers a Data Breach

February 19, 2026

CISA adds four vulnerabilities to KEV Catalog- Feb 17, 2026

February 18, 2026

CISSP Domain 1 – Risk Treatment Options

February 17, 2026

Google Patches First Chrome Zero-Day of 2026

February 17, 2026

CISSP Domain 1 : Threat vs Vulnerability vs Risk – Confused Trio

February 16, 2026

CISSP Domain 1: Governance vs Management

February 15, 2026

CISSP Domain 1 – CIA Triad Concept

February 15, 2026

What CISSP Really Tests: Mindset Over Memory

February 14, 2026

The Dark side of AI Caricatures

February 14, 2026

CISSP Executive Briefing: Invisible Cloud Visible Risk

February 13, 2026

CISA KEV Catalog Update Feb 12 2026

February 13, 2026

Odido Data Breach: 6.2 Million Customers Exposed

February 13, 2026

Apple Patch Tuesday – February 2026

February 12, 2026

Critical SQL Injection in FortiClientEMS: CVE-2026-21643

February 12, 2026

Microsoft Patch Tuesday February 2026

February 11, 2026

CISSP Playbook – Domain 4: Communication & Network Security

February 10, 2026

BeyondTrust Remote Support Critical Vulnerability- CVE-2026-1731

February 10, 2026

DKnife Toolkit: Dissecting a China-Nexus Router Espionage Framework

February 9, 2026

TheCyberThrone CyberSecurity Newsletter Top 5 Articles – January 2026

February 8, 2026

CISSP Executive Briefing on AI Security Governance

February 7, 2026

Flickr Data Breach: Third-Party Flaw Exposes Millions of Users

February 7, 2026

CISA Adds SmarterMail and React Native CLI Flaws to KEV Catalog

February 6, 2026

Varonis Acquires AllTrue.ai: Bolstering AI Security in the Enterprise

February 5, 2026

CISA’s adds 4 vulnerabilitis to KEV Catalog

February 4, 2026

Notepad++ Supply Chain Attack: A Six-Month Nightmare

February 3, 2026

CISSP Executive Briefing: Privacy as Resilience

February 2, 2026

North Korean PurpleBravo Targets Developers in Contagious Interview Campaign

February 1, 2026

CISSP Executive Briefing – Crisis Management and Breach Governance

January 31, 2026

Ivanti EPMM Zero-Days CVE-2026-1281 & CVE-2026-1340

January 31, 2026

Critical SolarWinds Web Help Desk Vulnerabilities

January 30, 2026

Dissecting CVE-2026-22709: The Zombie Exploit in Node.js vm2

January 29, 2026

Nike’s Data Breach: WorldLeaks Strikes the Sportswear Giant

January 28, 2026

CVE-2026-24858: Fortinet FortiCloud SSO Zero-Day Under Active Exploitation

January 28, 2026

Crunchbase Data Breach: ShinyHunters Exposes 2M+ Records

January 27, 2026

CISA KEV Catalog Update – 5 Vulnerabilities Added

January 27, 2026

CISSP Executive Briefing: Cyber Insurance Strategy & Pitfalls

January 26, 2026

Pwn2Own Automotive 2026 Tokyo

January 26, 2026

CISSP Executive Briefing- Cyber Risk Quantification

January 25, 2026

CVE-2026-24061 – 11 Year old Vulnerability gets traction

January 25, 2026

CISSP Playbook – Domain 3: Security Architecture & Engineering

January 24, 2026

CISA KEV Alert: 5 Critical Vulnerabilities Added to Catalog

January 24, 2026

Under Armour Unfaces a Data Breach

January 23, 2026

Osiris Ransomware Dissection

January 23, 2026

CVE-2026-20045: Cisco Unified Communications Zero-Day Under Active Attack

January 22, 2026

EU Launches GCVE: A Decentralized Revolution in Vulnerability Tracking

January 21, 2026

Grubhub Confirms Recent Data Breach

January 20, 2026

CISSP Executive Briefing: Ransomware Resilience

January 19, 2026

CrowdStrike Acquires Seraphic Security

January 19, 2026

The Risk Operations Center Era – Qualys ETM

January 18, 2026

Mozilla fixes multiple Sandbox escape Bugs

January 17, 2026

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

January 16, 2026

Infoblox Set to Acquire Axur

January 15, 2026

CVE-2025-64155 – Critical RCE in Fortinet FortiSIEM

January 14, 2026

Microsoft Patch Tuesday – January 2026

January 14, 2026

PaloAlto SHIELD Governance Framework for Vibe Coding

January 13, 2026

From Parallel Tracks to One Secure Converged Highway -CIO-CTO-CISO-CSO

January 13, 2026

CISA Adds Gogs RCE Vulnerability CVE-2025-8110 to KEV

January 13, 2026

CISSP Executive Briefing: Secure by Design

January 12, 2026

CCSP Domain 6 – Legal Risk and Compliance Detailed Notes

January 12, 2026

HPE OneView RCE CVE-2025-37164 Added to CISA KEV

January 11, 2026

IDHS Data Breach: Years of Exposed Sensitive Maps Affecting 700K Residents

January 10, 2026

Critical Ni8mare RCE and Expression Injection Vulnerability

January 10, 2026

CISSP Domain 2 Playbook – Protect What Really Matters

January 9, 2026

CrowdStrike Aqcuires SGNL

January 9, 2026

Critical RCE in Veeam Backup & Replication: CVE-2025-59470

January 8, 2026

CERT CC Warning on TOTOLINK Bug

January 7, 2026

Securing the Core : Database Security Executive Briefing

January 6, 2026

Sedgwick Discloses a Data Breach

January 6, 2026

ManageMyHealth discloses a Data Breach

January 5, 2026

A New Beginning: PK’s Chronicles Podcast on Spotify

January 4, 2026

Top Cybersecurity Trends to Watch in 2026

January 4, 2026

China’s Cybersecurity Law Overhaul

January 3, 2026

CISSP Domain 1 Playbook: Where Security Decisions Actually Begin

January 2, 2026

TheCyberThrone Analysis of Major Cybersecurity Stories of Year 2025

January 2, 2026

CISSP Executive Briefing on Third-Party Risk Is Enterprise Risk

January 2, 2026

CVE-2025-52691: Critical Unauthenticated RCE in SmarterMail

January 1, 2026

TheCyberThrone 2025: A Year of Global Reach

January 1, 2026

CyberSecurity 2025: TheCyberThrone YearEnd Consolidated Intelligence

December 31, 2025

New Ransomware Emerged in 2025 – Threat Intel Report

December 31, 2025

Cybersecurity in 2025: From Defense to Decisions — TheCyberThrone Trends Demystified

December 30, 2025

MongoBleed Now in CISA KEV After Global Exploitation Wave

December 30, 2025

$2Millions Spent but Password123 Won – Fancy Fall of Security

Based on a Narrative post in LinkedIn. The most expensive lesson in cybersecurity is learning that tools don't protect you. People, process, and discipline do. A CISO recently watched their…

PravinKarthik March 5, 2026

Two Perfect 10s: Cisco FMC Under Siege

Two unauthenticated remote code execution vulnerabilities — both scoring a perfect 10.0 on the CVSS scale — were disclosed on March 4, 2026 affecting Cisco Secure Firewall Management Center. Either…

PravinKarthik March 5, 2026

CISA adds Qualcomm and VMware Aria to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog — one affecting multiple Qualcomm chipsets and another targeting Broadcom's VMware…

PravinKarthik March 4, 2026

CISSP Domain 1: Mastering Security and Risk Management – Blog and Podcast

Blog & Podcast Series Welcome to the complete Domain 1 learning hub of the CISSP Blog & Podcast Series by PK’s Chronicles. Domain 1 is the foundation of CISSP. It…

PravinKarthik March 3, 2026

Android’s Biggest Security Update Since 2018 — And an Exploit Already in the Wild

Published: March 3, 2026 · Patch Levels: 2026-03-01 & 2026-03-05 · Zero-Days: 1 (Exploited) On March 3, 2026, Google published the Android Security Bulletin for March — and it's unlike…

PravinKarthik March 3, 2026

CISSP Domain 1 Wrap-Up – The Mental Model That Changes How You Think

Domain 1 – Security & Risk Management – is not just the first domain of CISSP. It is the foundation. If you misunderstand Domain 1, the rest of CISSP feels…

PravinKarthik March 2, 2026

$2Millions Spent but Password123 Won – Fancy Fall of Security

$2Millions Spent but Password123 Won – Fancy Fall of Security

Based on a Narrative post in LinkedIn. The most expensive lesson in cybersecurity is learning that tools don't protect you. People, process, and discipline do. A CISO recently watched their…

PravinKarthik March 5, 2026

Two Perfect 10s: Cisco FMC Under Siege

Two Perfect 10s: Cisco FMC Under Siege

Two unauthenticated remote code execution vulnerabilities — both scoring a perfect 10.0 on the CVSS scale — were disclosed on March 4, 2026 affecting Cisco Secure Firewall Management Center. Either…

PravinKarthik March 5, 2026

CISA adds Qualcomm and VMware Aria to KEV Catalog

CISA adds Qualcomm and VMware Aria to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog — one affecting multiple Qualcomm chipsets and another targeting Broadcom's VMware…

PravinKarthik March 4, 2026

CISSP Domain 1: Mastering Security and Risk Management – Blog and Podcast

CISSP Domain 1: Mastering Security and Risk Management – Blog and Podcast

Blog & Podcast Series Welcome to the complete Domain 1 learning hub of the CISSP Blog & Podcast Series by PK’s Chronicles. Domain 1 is the foundation of CISSP. It…

PravinKarthik March 3, 2026

Android’s Biggest Security Update Since 2018 — And an Exploit Already in the Wild

Android’s Biggest Security Update Since 2018 — And an Exploit Already in the Wild

Published: March 3, 2026 · Patch Levels: 2026-03-01 & 2026-03-05 · Zero-Days: 1 (Exploited) On March 3, 2026, Google published the Android Security Bulletin for March — and it's unlike…

PravinKarthik March 3, 2026

CISSP Domain 1 Wrap-Up – The Mental Model That Changes How You Think

CISSP Domain 1 Wrap-Up – The Mental Model That Changes How You Think

Domain 1 – Security & Risk Management – is not just the first domain of CISSP. It is the foundation. If you misunderstand Domain 1, the rest of CISSP feels…

PravinKarthik March 2, 2026

CISSP Domain 1 – Business Impact Analysis

CISSP Domain 1 – Business Impact Analysis

In the previous episode, we explored a hospital hit by ransomware and examined the difference between Business Continuity (BCP) and Disaster Recovery (DR). But here’s the critical question: Before you…

PravinKarthik March 1, 2026

CISSP Domain 1 – Business Continuity vs Disaster Recovery

CISSP Domain 1 – Business Continuity vs Disaster Recovery

When most people hear “disaster recovery,” they immediately think about restoring servers and backups. CISSP thinks differently. In Domain 1 – Security & Risk Management, Business Continuity (BCP) and Disaster…

PravinKarthik February 28, 2026