Weekly Digest #001 — The Week in Security

Welcome to the system.exposed weekly digest. Every Saturday we cut the week’s security noise down to the handful of things worth your attention. This first issue doubles as the template — here’s the shape every digest will take.

🔥 Top story

A one-paragraph plain-language summary of the single most important thing that happened this week, and — critically — what you should do about it. No fearmongering, just the action item.

🩹 Patch now

A short list of actively-exploited vulnerabilities with available fixes. If it’s being exploited in the wild and there’s a patch, it goes here.

• CVE-YYYY-NNNNN — Product X — what it is, whether it’s in active exploitation, and the version to upgrade to.
• CVE-YYYY-NNNNN — Product Y — one-line impact and the fix.

🕳 Breaches & leaks

Notable incidents from the week — who was hit, what data, and whether you need to act (rotate a password, watch for phishing, freeze credit).

• Company A — N million records, including [data types]. If you have an account, [specific action].

📖 Worth reading

Two or three excellent writeups, research drops, or tools from the community.

• [Title] — one line on why it’s worth your time.
• [Title] — one line on why it’s worth your time.

🛡 One thing to do this week

A single concrete habit to improve your posture. This issue’s: enable a passkey on your primary email account — see our setup guide. It takes three minutes and removes your most catastrophic single point of failure.

---

That’s the format. Subscribe below and this lands in your inbox every Saturday — self-hosted, no trackers, unsubscribe in one click.