ServiceNow
“Our company policy was violated” – former US Army CIO, President resign at ServiceNow after federal procurement investigation
"While we believe this was an isolated incident, we are further sharpening our hiring policies"
Edward Targett
Ed is co-founder of The Stack. He has worked in journalism for 15 years, most recently for the New Statesman's Tech Monitor. His interests span infosec, energy, foreign policy and sustainability.
Outages
CrowdStrike’s unholy cluster is terrible news for CISOs
AWS EC2 Windows instances also borked with Crowdstrike's manual mitigation not working. Guidance available but...
NATO
NATO to boost tech adoption – sees cyber, space, subsea as priorities
Alliance announces its new "Integrated Cyber Defence Centre" -- and is procuring extensively for a range of software and services as it works on projects like a new "MSaaS".
vulnerabilities
Trio of unauthenticated ServiceNow vulnerabilities exposed 42,000
CVE-2024-4879 (CVSS 9.8) lets “an unauthenticated user remotely execute code” -- ServiceNow swiftly pushed fix to hosted instances but those self-hosting must...
The Big Interview
The Big Interview: Solo.io CEO Idit Levine gets "Ambient"
On service mesh evolution, a re-architectected Istio, falling in love with technology and shooting hoops
operational technology
Scottish electricity firm plans £150m OT security spend
New requirements for utilities on cybersecurity under an “enhanced” Cyber Assessment Framework (e-CAF) is driving significant spend and the energy sector is...
UK
Where new technology minister Peter Kyle may focus, as Labour pledges national renewal
Energy, national security both ripe for significant technology investment but DSIT's mandate and regulatory focus are...
Entrust
Entrust CEO pledges changes after Google’s dynamite decision
CEO blames "misinterpretation we made of CA/Browser Forum compliance requirements"
Entrust
Google to block sites using Entrust certificates in bombshell move
No confidence in “competence, reliability, and integrity” of company says Chrome team as frustrations build to a head – just days after Entrust grovelled to the CA/Browser forum.
Federal Reserve
Federal Reserve passed Treasury Secretary's details to Russians after social engineering incident
"Hi. This is the Prezident here on zelensky.prank@rebel.spirit. Can I have your number and your friends' too?"
Nike
Nike vows better data use as digital sales slump
Firm is hunting for a "special" distinguished engineer to help run strategy and architecture from cloud to edge.
cybersecurity
CVSS 10 bug in LLM-to-SQL library highlights prompt injection risks
"When we stumbled upon this library we immediately thought that connecting an LLM to SQL query execution could result in a disastrous SQL injection..."