swiss-made security & it lab

Security news & tools for hands-on IT admins.

Actionable security news, curated CVE advisories, deep-dive tutorials, troubleshooting fixes, plain-English explainers and browser-based tools to secure and troubleshoot your infrastructure.

open_IT_toolbox browse_security_news

maintained by Emanuel De Almeida , IT engineer · geneva, switzerland · updated frequently

16news posts

115cve advisories

10tutorials

6fixes

4explainers

15scripts

2projects

32browser tools

editorial

Latest security news

all_news →

AI policy themed image showing Anthropic’s top models restricted for foreign users and security executives calling for the ban to be lifted

SecurityJun 15, 2026 · 20:19 UTC

Anthropic Export Ban: 76 Security Execs Demand Reversal

76 cybersecurity executives from Adobe, Google, Nvidia signed an open letter urging Commerce to lift Anthropic Fable 5 and Mythos 5 export controls.

by Emanuel De Almeidaread →

Visualization of an active exploit targeting a critical Cisco SD-WAN vulnerability

[Vulnerabilities] · Jun 15, 2026 · 17:55 UTC

CVE-2026-20262: Cisco SD-WAN Root Bug Actively Exploited

Cisco patches CVE-2026-20262, a critical Catalyst SD-WAN Manager flaw granting root access. CISA issued Emergency Directive 26-03 as UAT-8616 exploits systems.

emanuel de almeida · read →

Microsoft 365 Copilot interface being abused via malicious URLs to steal sensitive data

[Vulnerabilities] · Jun 15, 2026 · 15:27 UTC

SearchLeak Vulnerability in Microsoft 365 Copilot Enables One-Click Data Theft

CVE-2026-42824 chains three flaws to exfiltrate emails, passwords, and documents via malicious URLs. Microsoft has patched server-side.

emanuel de almeida · read →

Illustration of Conti ransomware developer Oleksii Lytvynenko pleading guilty and facing up to 20 years in prison

[Security] · Jun 15, 2026 · 13:53 UTC

Conti Ransomware Developer Pleads Guilty: Ukrainian Faces 20 Years in Prison

Oleksii Lytvynenko admitted to building malware loaders for Conti, which extorted over $150 million from victims across 47 U.S. states and 31 countries.

emanuel de almeida · read →

Tech

Windows 11 KB5094126 June 2026: Key Fixes for Sysadmins

KB5094126 fixes HYPERVISOR_ERROR 0x20001 crashes and BitLocker recovery loops. Released June 9, 2026 for Windows 11 24H2/25H2.

emanuel de almeidaJun 13, 2026 · 21:13 UTC

Security

npm 12 Blocks Install Scripts by Default: July 2026 Deadline

npm v12 disables dependency install scripts starting July 2026, affecting 2M+ packages. Developers must whitelist trusted packages via allowScripts in package.json.

emanuel de almeidaJun 13, 2026 · 19:24 UTC

Security

June 2026 Patch Tuesday: 3 Zero-Days, 206 CVEs Fixed

Microsoft's largest-ever Patch Tuesday fixes 206 CVEs including three actively exploited zero-days. BitLocker bypass, Defender privilege escalation actively exploited.

emanuel de almeidaJun 12, 2026 · 22:00 UTC

Vulnerabilities

CVE-2026-35273: Oracle PeopleSoft Zero-Day Exploited

CVE-2026-35273 enables unauthenticated RCE in Oracle PeopleSoft. ShinyHunter exploits this zero-day to steal HR/payroll data. Emergency patch available.

emanuel de almeidaJun 12, 2026 · 19:54 UTC

security radar

CVE Watch

all_advisories →

criticalCVE-2026-50751 · 9.3

Check Point Gaia OS IKEv1 Authentication Bypass Allows Unauthorized VPN Access

CVE-2026-50751 is a critical authentication bypass in Check Point Gaia OS IKEv1 VPN that lets remote attackers establish VPN sessions without valid credentials. Actively exploited.

highCVE-2026-48095 · 8.8

7-Zip Heap Buffer Overflow via NTFS Handler Integer Overflow (CWE-190)

CVE-2026-48095 is a critical heap buffer overflow in 7-Zip versions 26.00 and earlier caused by integer overflow in NTFS stream handling, enabling arbitrary code execution.

highCVE-2025-48595 · 8.4

Android Framework Integer Overflow (Privilege Escalation Zero-Day)

An integer overflow in the Android Framework component creates a possible way to achieve code execution in multiple locations. This could lead to local escalation of privilege with no additional execution privileges needed, and user interaction is not needed for exploitation. Google indicated the flaw may be under limited, targeted exploitation, and it was fixed in the Android security updates published with the 2026-06 patch level.

mediumCVE-2026-45585 · 6.8

Windows YellowKey Security Feature Bypass Vulnerability Explained

CVE-2026-45585 is a medium-severity Windows security feature bypass flaw affecting BitLocker. Physical access required. TPM+PIN users are not at risk.

criticalCVE-2026-0257 · 9.1

Palo Alto Networks PAN-OS, GlobalProtect authentication bypass

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS software allow an attacker to bypass security restrictions and establish an unauthorized VPN connection. The issue stems from reliance on cookies without validation and integrity checking (CWE-565). Panorama and Cloud NGFW are not impacted by these issues.

criticalCVE-2026-35428

Azure Cloud Shell, unauthenticated command injection (spoofing over network)

Improper neutralization of special elements used in a command ('command injection') in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network.

step by step

Latest tutorials

all_tutorials →

Identity security themed image showing Entra cloud policies applied to on-premises AD via password protection proxy and DC agents

[tutorial] · 6 min

Entra Password Protection: On-Premises AD Setup Guide

Deploy Microsoft Entra Password Protection to block weak passwords in on-premises AD. Stolen credentials cause 22% of breaches; this guide covers proxy and DC agent setup.

start →

IT support themed image showing a script-based Office scrubber tool wiping Office from a Windows PC

[tutorial] · 5 min

Office Scrubber Tool: Completely Uninstall Microsoft Office

Office Scrubber removes all Microsoft Office files, registry entries, and licenses. Our testing confirmed 100% cleanup across M365, LTSC, and legacy versions.

start →

Windows 11 tutorial themed image showing BitLocker being removed from an encrypted drive

[tutorial] · 5 min

BitLocker Removal Guide: Disable Encryption in Windows 11

Remove BitLocker encryption from Windows 11 drives using Control Panel. Decryption takes 1-3 hours depending on drive size. Includes Rufus method to prevent 24H2 auto-encryption.

start →

troubleshooting

Latest fixes

all_fixes →

fix · 5 min

Fix Windows 11 Slow After KB5094126: 7 Steps

KB5094126 causing freezes within 5 minutes? These 7 fixes restored boot speed in our tests. Repair files, disable startup apps, free storage.

emanuel de almeida · fix it →

fixFix MEMORY_MANAGEMENT BSOD: 7 Proven Windows 11 FixesFix the MEMORY_MANAGEMENT stop code 0x0000001A on Windows 11 with RAM diagnostics, DISM/SFC repairs, and driver updates. Seven tested solutions inside.5 min read fixFix KB5094126 Black Screen on Windows 11Remove Windows 11 update KB5094126 causing black screens and error 0xc0430001. Affects HP laptops most. Step-by-step WinRE recovery guide.5 min read fixMicrosoft Teams Not Loading? Fix for Windows 10/11Fix Teams stuck on loading screen or blank window in under 10 minutes. Clear cache, reset network settings, and reinstall using our tested step-by-step guide.6 min read fixEvent ID 6008: Fix Unexpected Shutdown in Windows 10/11Event ID 6008 signals an unexpected Windows shutdown. Fix it with SFC/DISM repair, driver updates, hardware diagnostics, and power settings—70% of BSODs trace to driver issues.6 min read

concepts

Explained

all_explainers →

[explainer] · 5 min

What Is an API? How It Works & Why It Matters

APIs let software systems communicate securely. With 99% of organizations reporting API security issues in 2024, understanding how APIs work is essential for IT teams.

read →

[explainer] · 5 min

DHCP Explained: Guide for Network Admins

DHCP automatically assigns IP addresses to 18.5 billion connected devices worldwide. Learn how the DORA process works and secure your network infrastructure.

read →

[explainer] · 5 min

Docker: Containerization Platform Explained for IT Pros

Docker packages applications with dependencies into portable containers. With 92% IT adoption in 2025 and 318 billion Docker Hub pulls, it's essential knowledge for IT pros.

read →

[explainer] · 5 min

Zero Trust Explained: Architecture, Principles & Use Cases

Zero Trust saves organizations $1.76M per breach on average. Learn the architecture, core principles, and practical implementation strategies for this security framework.

read →

open source

Open-source projects

all_projects →

SuperDelete, an open-source tool to delete long-path files on Windows by Navanem

[project] · C# / .NET 8 (WPF)

SuperDelete: delete long-path files on Windows (CLI and GUI)

A free, open-source Windows tool that deletes files and folders blocked by the 260-character path limit, using extended-length paths and Win32 APIs, from a command-line tool or a modern desktop app.

v2.1.1 · view →

[project] · C# / .NET 8 (WPF)

RoboSync: a friendly Robocopy GUI for Windows

A free, open-source desktop GUI for Windows Robocopy. Copy, mirror, move and sync folders without memorising command-line flags, with live progress, a dry-run preview and saved jobs.

v1.0 · view →

browser-based

IT tools

all 32 tools →

[NET]Subnet Calculator [STORAGE]RAID Calculator [NET]VLAN Calculator [LINUX]CHMOD Calculator [SEC]Firewall Rule Builder [SEC]Password Generator [CRYPTO]Hash Text [CRYPTO]Token Generator

Emanuel De Almeida

IT engineer · Geneva, Switzerland

about navanem

Emanuel De Almeida, IT engineer in Geneva, Switzerland.

NAVANEM is a solo-built, Swiss-based security and IT lab for hands-on admins. Every article, tool and script is built and tested in real-world environments, not marketing decks.

about_&_contact github_profile