Skip to content
pac4j-jwt JwtAuthenticator Authentication Bypass (CVE-2026-29000)
A critical vulnerability (CVE-2026-29000) has been disclosed in pac4j-jwt, a widely used Java authentication library. Under impacted conditions, an attacker may be able to bypass authentication entirely and impersonate any user—including administrators. This is an [...]
Geopolitical Cyber Threats: A Practical Readiness Guide for Businesses
When geopolitical tensions rise, cyber “noise” rises too. Organizations often see a surge in online claims, threats, and attention-seeking announcements from a mix of hacktivists and state-aligned operators. Some of that chatter is exaggerated—or entirely [...]
Building Secure Communication Channels for Staff
Understanding the Imperative of Secure Employee Communication Systems In today's interconnected world, Secure Employee Communication Systems are no longer optional—they are a critical component of modern cybersecurity and IT management. At Alvaka, we prioritize [...]
Oli Thordarson on Insurer TV: Deliberately Timed Ransomware
Alvaka proudly shares that CEO Oli Thordarson was featured on The Insurer’s News in Focus following the NetDiligence Cyber Risk Summit in Miami Beach. In the interview, Thordarson explains how modern ransomware groups are deliberately timing attacks to inflict [...]
Cybersecurity and Ransomware Risks in Mergers and Acquisitions
Cybersecurity Due Diligence in M&A: Managing Ransomware Risk and IT Integration Mergers and acquisitions (M&A) bring opportunities for growth, market expansion, and innovation—but they also introduce complex cybersecurity risks. When two organizations combine, so do [...]
Alvaka Partners with Halcyon to Accelerate Ransomware Recovery
Alvaka, a leader in ransomware recovery and cybersecurity solutions, announced a new partnership with Halcyon to help organizations detect, respond to and recover from ransomware attacks faster. The collaboration enhances business continuity by combining Halcyon’s [...]