data exposed

SonicWall has confirmed a cloud‑backup compromise that exposed firewall configuration preference files stored in certain MySonicWall accounts, and customers who used the service are being urged to act immediately to contain and remediate potential follow‑on attacks. SonicWall’s notice —...

Rockwell Automation’s FactoryTalk Analytics LogixAI has a serious configuration weakness that demands immediate attention from OT and IT teams: CISA republished an advisory assigning CVE-2025-9364 to an overly permissive Redis instance used by LogixAI, calling out exposure of sensitive system...

What happens inside an enterprise when employees harness powerful artificial intelligence tools without organizational oversight? This question, once hypothetical, is now a burning reality for IT leaders as “shadow AI” moves from the periphery to center stage in corporate risk discussions...

Orchestry, a recognized leader in Microsoft 365 management platforms, has announced a bold new chapter in enterprise security and governance by launching a suite of advanced tools focused squarely on tackling long-standing risks within the Microsoft 365 ecosystem. The July 2025 release...

A sudden wave of panic rippled through the gaming community this week following widespread reports of a massive Steam data leak, which allegedly compromised account information for more than 89 million users. As rumors and speculation intensified across social media and tech forums, Valve, the...

When vulnerabilities surface in widely deployed software applications, the ripples inevitably touch both enterprise and home users alike. The CVE-2017-0045 security advisory, affecting Windows DVD Maker, stands as a sobering example of how legacy components in the Windows ecosystem can expose...

Netwrix has recently unveiled significant enhancements to its 1Secure SaaS platform, introducing a new Data Security Posture Management (DSPM) solution tailored for Microsoft 365 environments. This development aims to bolster identity and data security by providing organizations with advanced...

The rapid proliferation of AI-powered assistants, such as Microsoft Copilot, OpenAI ChatGPT Enterprise, and Amazon Bedrock, has fundamentally transformed business productivity, collaboration, and decision-making in enterprise environments. As organizations seek to harness the value of these...

It’s a truth universally acknowledged, at least in IT circles, that when something is marketed as “open,” everyone wants a piece—but no one wants to be left with the security bill. Yet here we are. According to Tenable’s freshly brewed Cloud AI Risk Report 2025, there’s an urgent warning for...

In today’s fast-evolving cybersecurity landscape, even the most trusted components of our operating systems are not immune to vulnerabilities. A newly reported vulnerability—CVE-2025-27742—targets Windows NTFS, the backbone of file storage on countless Windows machines. This out-of-bounds read...

A new vulnerability in Windows is raising eyebrows and prompting IT professionals to revisit their security playbooks. CVE-2025-21203 is a buffer over-read flaw in the Windows Routing and Remote Access Service (RRAS) that can allow unauthorized attackers to extract sensitive information over a...

Hackers are finding creative ways to breach secure environments, and the latest example involves Microsoft's Azure App Proxy. The proxy, intended to safely expose on-premises applications to the internet without the hassle of opening firewall ports, now finds itself in the crosshairs due to...

A recent report by CTech has sent shockwaves through the development community: an alarming vulnerability in Microsoft Copilot appears to have exposed thousands of private GitHub repositories. This revelation has major implications for developers, enterprises, and anyone relying on the secure...

A recent TechCrunch report has sounded a new cybersecurity alarm: thousands of GitHub repositories that were once public—but are now private—can still be accessed through Microsoft Copilot. In this in-depth look, we’ll unravel the technical details behind this issue, explore its implications for...

In this Data Exposed episode Scott welcomes Ron Matchoro, a Senior Program Manager on the SQL Security team, to talk about a new Threat Detection feature on Azure SQL Database, which is about to be released for Preview. SQL Database Threat Detection provides a new layer of security, which...

In this week's episode of Data Exposed, Scott would like to thank Seth for filling in as host while Scott is out on a business trip. Seth does an outstanding job filling in and welcoming Adnan Ijaz to the studio to announce the GA of HDInsight on Linux. Adnan should be happy Seth was filling in...

This week's episode of Data Exposed welcomes Sahaj Saini, Program Manager on the SQL Server team. Today, Sahaj joins us from our southern California office to show us an exciting new feature of SQL Server 2016 called PolyBase. PolyBase simplifies management and querying of both relational and...

In this weeks episode of Data Exposed, Scott welcomes back Asad Khan, Principle PM on the HDInsight team. Today Asad shows us how easy it is to use 3rd party BI tools like Tableau to do data analysis for better insights into your data. This episode focuses on Tableau and we begin the episode by...

OK, not quite 7 on today's show, but close enough! On today's episode of Data Exposed, Scott welcomes the always awesome Tom LaRock. Tom is Head Geek (what an awesome title!) at Solarwinds, an infrastructure monitoring and alerting tools company where he focuses on the database aspect of all...

In this episode of Data Exposed, Scott welcomes Jakub Szymaszek, a Senior Program Manager in the SQL Server team. In this episode, Jakub discusses the Always Encrypted technology in SQL Server 2016. Quite different from TDE, Always Encrypted, as Jakub explains, is the encryption of data not only...