Genians disclosed a suspected compromise involving its Genian NAC update server after unidentified files were transmitted from the cloud update service to some customer NAC policy servers. The company said it notified affected partners and customers, worked with authorities, stopped the existing update system, provided detection and inspection support, and stated that no confirmed customer damage had been identified at the time of the notices. Follow-up advisories identified weaknesses in update-file integrity verification and parameter-injection handling that could let an attacker distribute and execute arbitrary files through Genian NAC. Genians responded by issuing patches for affected Genian NAC and ZTNA versions, redesigning the update service with stronger supply-chain controls, and adding signing and logging protections.