Author Info

National Crime Agency investigating as well as NCSC

It’s that time of the month again: Microsoft has pushed out 98 security patches for January’s Patch Tuesday: 11 are critical, one CVE-2023-21674  is being actively exploited and another gives unauthenticated remote access to your SharePoint Server – and requires not just the patch but a “SharePoint upgrade action”

Company blames JPMorgan for AML failings, sues it for recovery

Analysis by The Stack of over 90,000 vulnerabilities revealed a sharp growth in bugs associated with widely known “CWEs” – or potentially exploitable weaknesses that can occur in architecture, design, code, or implementation and which could potentially have been caught upstream in a secure development process. One control is to

Failure to invest in modernising its IT estate contributed to what Southwest Airlines anticipates will be a colossal $825 million writedown in Q4, after it cancelled 6,700 flights between December 21 to December 31. The airline exposed the losses in an SEC filing ahead of its Q4 earnings, saying

Anne Boden aims fire at "tech bros"

Exchange admins have been playing whac-a-mole and still getting pwned...

Updated January 6, 11:00 BST: CircleCI has updated its advisory which deserves revisiting. CircleCI is calling on customers to “immediately rotate any and all secrets” after a security incident. The breach appears to have occurred around December 21 and to have gone unnoticed over the Christmas period. Credentials stolen

Amazon is cutting over 18,000 jobs, CEO Andy Jassy has confirmed – saying he was pressed into revealing the news before contacting employees “as one of our teammates leaked this information externally.” The majority of the 18,000 Amazon job cuts will be concentrated in Amazon Stores and HR, including