<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>AnySec Insights</title>
    <link>https://xanysec.com/blog/</link>
    <description>Penetration testing, managed SOC, DDoS resilience, and Anycast network — for casinos, exchanges, and banks.</description>
    <language>en</language>
    <lastBuildDate>Sat, 18 Jul 2026 00:00:00 GMT</lastBuildDate>
    <atom:link href="https://xanysec.com/feed.xml" rel="self" type="application/rss+xml" />
    <item>
      <title>Credential stuffing against casino cashiers</title>
      <link>https://xanysec.com/blog/credential-stuffing-casino-cashier/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/credential-stuffing-casino-cashier/</guid>
      <description>Credential stuffing rarely loses money at login — the loss lands at the cashier. Here is the full attack chain against casino withdrawal flows, and how to break it.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>casinos</category><category>account-takeover</category><category>fraud</category><category>authentication</category>
      <pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>When your SOC tool is the target: CVE-2026-20253</title>
      <link>https://xanysec.com/blog/splunk-rce-cve-2026-20253-soc-tooling/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/splunk-rce-cve-2026-20253-soc-tooling/</guid>
      <description>CVE-2026-20253 is an unauthenticated RCE in Splunk Enterprise, now on CISA&apos;s KEV list. When the platform your SOC runs on is internet-reachable, it is attack surface too. What to check today.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>cve</category><category>soc</category><category>rce</category><category>exposure-management</category>
      <pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>The casino cybersecurity threat landscape in 2026</title>
      <link>https://xanysec.com/blog/casino-cybersecurity-threat-landscape-2026/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/casino-cybersecurity-threat-landscape-2026/</guid>
      <description>What we&apos;ve seen actually hitting licensed online casinos this year — bonus abuse, withdrawal fraud, and the slow rise of AI-assisted social engineering.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>casinos</category><category>fraud</category><category>threat-intel</category>
      <pubDate>Wed, 20 May 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>Building a SOC for a crypto exchange from scratch</title>
      <link>https://xanysec.com/blog/crypto-exchange-soc-runbook/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/crypto-exchange-soc-runbook/</guid>
      <description>Concrete detection rules, alert thresholds, and on-call playbooks for the threats unique to a regulated exchange — wallet drainers, custody compromise, address-poisoning, and more.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>crypto</category><category>exchange</category><category>soc</category><category>incident-response</category>
      <pubDate>Thu, 14 May 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>NIS2 + DORA without the consultant theatre</title>
      <link>https://xanysec.com/blog/eu-cybersecurity-compliance-nis2-dora/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/eu-cybersecurity-compliance-nis2-dora/</guid>
      <description>What EU operators actually need to do to be ready for NIS2 and DORA — control by control, with the time and effort to expect.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>nis2</category><category>dora</category><category>compliance</category><category>eu</category>
      <pubDate>Thu, 07 May 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>Anatomy of a modern L7 DDoS attack</title>
      <link>https://xanysec.com/blog/anatomy-of-a-modern-l7-ddos/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/anatomy-of-a-modern-l7-ddos/</guid>
      <description>What we see hitting casino and exchange edges in 2026 — and why provider defaults don&apos;t catch it.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>ddos</category><category>l7</category><category>defense</category>
      <pubDate>Fri, 01 May 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>Why we still do pure-manual penetration testing</title>
      <link>https://xanysec.com/blog/why-pure-manual-pentest/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/why-pure-manual-pentest/</guid>
      <description>Automated scanners have improved. Pentest-as-a-service platforms are everywhere. Here&apos;s why our senior engineers still test by hand — and what they catch that scanners don&apos;t.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>pentest</category><category>methodology</category><category>manual</category>
      <pubDate>Tue, 28 Apr 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>What a real pentest report looks like</title>
      <link>https://xanysec.com/blog/what-a-real-pentest-report-looks-like/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/what-a-real-pentest-report-looks-like/</guid>
      <description>If your last pentest report was a Nessus PDF export, you got scammed. Here&apos;s exactly what to demand.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>pentest</category><category>reports</category><category>buying-guide</category>
      <pubDate>Sun, 12 Apr 2026 00:00:00 GMT</pubDate>
    </item>
    <item>
      <title>Building a private Anycast edge from scratch</title>
      <link>https://xanysec.com/blog/building-private-anycast/</link>
      <guid isPermaLink="true">https://xanysec.com/blog/building-private-anycast/</guid>
      <description>Why some of our clients run their own ASN, IP blocks, and edge — the trade-offs vs Cloudflare, and how the math actually works.</description>
      <author>email@xanysec.com (AnySec Engineering)</author>
      <category>anycast</category><category>bgp</category><category>infrastructure</category><category>sovereignty</category>
      <pubDate>Fri, 20 Mar 2026 00:00:00 GMT</pubDate>
    </item>
  </channel>
</rss>
