swiss-made security & it lab

Security news & tools for hands-on IT admins.

Actionable security news, curated CVE advisories, deep-dive tutorials, troubleshooting fixes, plain-English explainers and browser-based tools to secure and troubleshoot your infrastructure.

open_IT_toolbox browse_security_news

maintained by Emanuel De Almeida , IT engineer · geneva, switzerland · updated frequently

16news posts

55cve advisories

9tutorials

6fixes

4explainers

15scripts

2projects

32browser tools

editorial

Latest security news

all_news →

AI policy themed image showing Anthropic’s top models restricted for foreign users and security executives calling for the ban to be lifted

SecurityJun 15, 2026 · 20:19 UTC

Anthropic Export Ban: 76 Security Execs Demand Reversal

76 cybersecurity executives from Adobe, Google, Nvidia signed an open letter urging Commerce to lift Anthropic Fable 5 and Mythos 5 export controls.

by Emanuel De Almeidaread →

Visualization of an active exploit targeting a critical Cisco SD-WAN vulnerability

[Vulnerabilities] · Jun 15, 2026 · 17:55 UTC

CVE-2026-20262: Cisco SD-WAN Root Bug Actively Exploited

Cisco patches CVE-2026-20262, a critical Catalyst SD-WAN Manager flaw granting root access. CISA issued Emergency Directive 26-03 as UAT-8616 exploits systems.

emanuel de almeida · read →

Microsoft 365 Copilot interface being abused via malicious URLs to steal sensitive data

[Vulnerabilities] · Jun 15, 2026 · 15:27 UTC

SearchLeak Vulnerability in Microsoft 365 Copilot Enables One-Click Data Theft

CVE-2026-42824 chains three flaws to exfiltrate emails, passwords, and documents via malicious URLs. Microsoft has patched server-side.

emanuel de almeida · read →

Illustration of Conti ransomware developer Oleksii Lytvynenko pleading guilty and facing up to 20 years in prison

[Security] · Jun 15, 2026 · 13:53 UTC

Conti Ransomware Developer Pleads Guilty: Ukrainian Faces 20 Years in Prison

Oleksii Lytvynenko admitted to building malware loaders for Conti, which extorted over $150 million from victims across 47 U.S. states and 31 countries.

emanuel de almeida · read →

Tech

Windows 11 KB5094126 June 2026: Key Fixes for Sysadmins

KB5094126 fixes HYPERVISOR_ERROR 0x20001 crashes and BitLocker recovery loops. Released June 9, 2026 for Windows 11 24H2/25H2.

emanuel de almeidaJun 13, 2026 · 21:13 UTC

Security

npm 12 Blocks Install Scripts by Default: July 2026 Deadline

npm v12 disables dependency install scripts starting July 2026, affecting 2M+ packages. Developers must whitelist trusted packages via allowScripts in package.json.

emanuel de almeidaJun 13, 2026 · 19:24 UTC

Security

June 2026 Patch Tuesday: 3 Zero-Days, 206 CVEs Fixed

Microsoft's largest-ever Patch Tuesday fixes 206 CVEs including three actively exploited zero-days. BitLocker bypass, Defender privilege escalation actively exploited.

emanuel de almeidaJun 12, 2026 · 22:00 UTC

Vulnerabilities

CVE-2026-35273: Oracle PeopleSoft Zero-Day Exploited

CVE-2026-35273 enables unauthenticated RCE in Oracle PeopleSoft. ShinyHunter exploits this zero-day to steal HR/payroll data. Emergency patch available.

emanuel de almeidaJun 12, 2026 · 19:54 UTC

security radar

CVE Watch

all_advisories →

criticalCVE-2026-50751 · 9.3

Check Point Gaia OS IKEv1 Authentication Bypass Allows Unauthorized VPN Access

CVE-2026-50751 is a critical authentication bypass in Check Point Gaia OS IKEv1 VPN that lets remote attackers establish VPN sessions without valid credentials. Actively exploited.

highCVE-2026-48095 · 8.8

7-Zip Heap Buffer Overflow via NTFS Handler Integer Overflow (CWE-190)

CVE-2026-48095 is a critical heap buffer overflow in 7-Zip versions 26.00 and earlier caused by integer overflow in NTFS stream handling, enabling arbitrary code execution.

mediumCVE-2026-45585 · 6.8

Windows YellowKey Security Feature Bypass Vulnerability Explained

CVE-2026-45585 is a medium-severity Windows security feature bypass flaw affecting BitLocker. Physical access required. TPM+PIN users are not at risk.

criticalCVE-2026-35428

Azure Cloud Shell, unauthenticated command injection (spoofing over network)

Improper neutralization of special elements used in a command ('command injection') in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network.

criticalCVE-2026-41089 · 9.8

Windows Netlogon Stack-Based Buffer Overflow Enables Remote Code Execution

CVE-2026-41089 is a critical stack-based buffer overflow in Windows Netlogon that allows unauthenticated remote code execution. CVSS 9.8. Patch immediately.

highCVE-2025-24201 · 8.8

Apple WebKit, sandbox escape via malicious web content (zero-day)

An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions. Maliciously crafted web content may be able to break out of Web Content sandbox.

step by step

Latest tutorials

all_tutorials →

IT support themed image showing a script-based Office scrubber tool wiping Office from a Windows PC

[tutorial] · 5 min

Office Scrubber Tool: Completely Uninstall Microsoft Office

Office Scrubber removes all Microsoft Office files, registry entries, and licenses. Our testing confirmed 100% cleanup across M365, LTSC, and legacy versions.

start →

Windows 11 tutorial themed image showing BitLocker being removed from an encrypted drive

[tutorial] · 5 min

BitLocker Removal Guide: Disable Encryption in Windows 11

Remove BitLocker encryption from Windows 11 drives using Control Panel. Decryption takes 1-3 hours depending on drive size. Includes Rufus method to prevent 24H2 auto-encryption.

start →

Visualization of dsregcmd status output showing Azure AD joined and domain joined state on a Windows device

[tutorial] · 6 min

Dsregcmd Command: Check Azure AD Join Status Windows 10/11

Run dsregcmd /status to verify Microsoft Entra ID device registration, diagnose SSO failures, and check Primary Refresh Token status on Windows systems.

start →

troubleshooting

Latest fixes

all_fixes →

fix · 5 min

Fix Windows 11 Slow After KB5094126: 7 Steps

KB5094126 causing freezes within 5 minutes? These 7 fixes restored boot speed in our tests. Repair files, disable startup apps, free storage.

emanuel de almeida · fix it →

fixFix MEMORY_MANAGEMENT BSOD: 7 Proven Windows 11 FixesFix the MEMORY_MANAGEMENT stop code 0x0000001A on Windows 11 with RAM diagnostics, DISM/SFC repairs, and driver updates. Seven tested solutions inside.5 min read fixFix KB5094126 Black Screen on Windows 11Remove Windows 11 update KB5094126 causing black screens and error 0xc0430001. Affects HP laptops most. Step-by-step WinRE recovery guide.5 min read fixMicrosoft Teams Not Loading? Fix for Windows 10/11Fix Teams stuck on loading screen or blank window in under 10 minutes. Clear cache, reset network settings, and reinstall using our tested step-by-step guide.6 min read fixEvent ID 6008: Fix Unexpected Shutdown in Windows 10/11Event ID 6008 signals an unexpected Windows shutdown. Fix it with SFC/DISM repair, driver updates, hardware diagnostics, and power settings—70% of BSODs trace to driver issues.6 min read

concepts

Explained

all_explainers →

[explainer] · 5 min

What Is an API? How It Works & Why It Matters

APIs let software systems communicate securely. With 99% of organizations reporting API security issues in 2024, understanding how APIs work is essential for IT teams.

read →

[explainer] · 5 min

DHCP Explained: Guide for Network Admins

DHCP automatically assigns IP addresses to 18.5 billion connected devices worldwide. Learn how the DORA process works and secure your network infrastructure.

read →

[explainer] · 5 min

Docker: Containerization Platform Explained for IT Pros

Docker packages applications with dependencies into portable containers. With 92% IT adoption in 2025 and 318 billion Docker Hub pulls, it's essential knowledge for IT pros.

read →

[explainer] · 5 min

Zero Trust Explained: Architecture, Principles & Use Cases

Zero Trust saves organizations $1.76M per breach on average. Learn the architecture, core principles, and practical implementation strategies for this security framework.

read →

open source

Open-source projects

all_projects →

SuperDelete, an open-source tool to delete long-path files on Windows by Navanem

[project] · C# / .NET 8 (WPF)

SuperDelete: delete long-path files on Windows (CLI and GUI)

A free, open-source Windows tool that deletes files and folders blocked by the 260-character path limit, using extended-length paths and Win32 APIs, from a command-line tool or a modern desktop app.

v2.1.1 · view →

[project] · C# / .NET 8 (WPF)

RoboSync: a friendly Robocopy GUI for Windows

A free, open-source desktop GUI for Windows Robocopy. Copy, mirror, move and sync folders without memorising command-line flags, with live progress, a dry-run preview and saved jobs.

v1.0 · view →

browser-based

IT tools

all 32 tools →

[NET]Subnet Calculator [STORAGE]RAID Calculator [NET]VLAN Calculator [LINUX]CHMOD Calculator [SEC]Firewall Rule Builder [SEC]Password Generator [CRYPTO]Hash Text [CRYPTO]Token Generator

Emanuel De Almeida

IT engineer · Geneva, Switzerland

about navanem

Emanuel De Almeida, IT engineer in Geneva, Switzerland.

NAVANEM is a solo-built, Swiss-based security and IT lab for hands-on admins. Every article, tool and script is built and tested in real-world environments, not marketing decks.

about_&_contact github_profile