incident response

A regression in Moby’s authorization path has resurfaced a long‑standing risk: CVE‑2024‑41110 lets the Docker Engine forward API calls to AuthZ plugins without the request body when a client sets a zero Content‑Length, giving an attacker the chance to bypass authorization checks that rely on the...

CVE-2026-0102: what we know (and what you should do now) Summary (short) CVE-2026-0102 is listed on Microsoft’s Security Update Guide as a Microsoft Edge (Chromium‑based) “Defense in Depth” vulnerability. Microsoft’s “defense-in-depth” label typically means the issue weakens or bypasses one or...

Several thousand Microsoft Outlook users were left locked out of their mailboxes on July 9–10, 2025 after an authentication-related service incident that disrupted Outlook on the web, mobile apps and desktop clients — an outage Microsoft traced to a recent change and addressed with targeted...

Microsoft’s Security Update Guide lists CVE-2026-21229 as a Remote Code Execution (RCE) class vulnerability affecting Power BI, but the public advisory is terse and the precise attack mechanics and proof-of-concept details remain limited at the time of writing. (msrc.microsoft.com) Background /...

A recently disclosed weakness in the AVEVA PI to CONNECT Agent can leak proxy connection details — including proxied URLs and embedded credentials — via Windows event logs, and operators must treat this as an urgent secrets‑exposure incident: inventory affected hosts, purge or redact exposed...

GitHub’s platform suffered a multi-service disruption on 9–10 February 2026 that left Actions queues stalled, pull‑request pages slow or erroring, notifications delayed by up to an hour, and parts of Copilot operating with policy propagation delays — a messy reminder that even the dominant...

Microsoft Azure is not experiencing a single, platform‑wide blackout on February 9, 2026, but the cloud did suffer a string of high‑impact incidents earlier this week — including a VM/control‑plane failure and a follow‑on Managed Identities overload on February 2–3, and a localized West US...

Microsoft’s brief but visible data-center power outage over the weekend exposed a fragile intersection between physical infrastructure and the everyday digital workings of Windows devices, temporarily disrupting Windows Update deliveries and Microsoft Store downloads for users worldwide...

Microsoft’s cloud suffered a regional power hiccup on February 7, 2026 that left a slice of the West US Azure footprint struggling — and it’s a reminder that even the biggest cloud platforms can be vulnerable to physical infrastructure failures and cascading recovery effects. (theverge.com)...

Microsoft's public promise to "fix Windows 11" this year is not a marketing flourish — it's a direct response to hard, visible pain across the platform, and the company is now mobilizing a formal "swarming" effort to address the problems users and testers have been raising. Pavan Davuluri, who...

MicroWorld’s eScan antivirus was used as a delivery vehicle for a malicious update on January 20, 2026, when an unidentified threat actor breached a regional update server and pushed a trojanized update for roughly two hours — a supply‑chain compromise that turned a trusted security tool into a...

Microsoft’s cloud productivity stack suffered a major disruption on January 22–23, 2026, when a portion of North America service infrastructure stopped processing traffic as expected — producing a roughly nine‑to‑ten hour outage that affected Outlook/Exchange Online, Microsoft 365 admin and...

Microsoft has assigned CVE-2026-20959 to a SharePoint Server presentation‑layer (spoofing) vulnerability, and administrators should treat the entry as a vendor‑tracked, high‑urgency condition that requires immediate triage and likely patching or mitigations depending on the MSRC mapping for each...

Microsoft has published a Security Update Guide entry for CVE-2026-20951, a Microsoft Office SharePoint Server remote code execution (RCE) vulnerability included in the January 2026 security rollup, and administrators running on‑premises SharePoint should treat it as a high‑priority...

Microsoft’s Security Update Guide lists CVE-2026-20951 as a remote code execution (RCE) vulnerability affecting Microsoft SharePoint Server, but public technical details are sparse; defenders should treat the identifier as an urgent patch-and-hunt signal, cross-check vendor KB mappings, and...

Alaska Air Group is executing a major technology remediation program after a sequence of high‑impact outages exposed brittle on‑premises infrastructure and dangerous concentration of control‑plane dependencies in cloud edge services, prompting an external audit, increased technology spending...

Microsoft’s new Defender Experts Suite packages the company’s in‑house security expertise into a single, subscription‑based offering that bundles 24/7 managed extended detection and response (MXDR), proactive and reactive incident response, and named engineering/advisory support — a move aimed...

Microsoft is rolling its in-house security expertise into a single, subscription-based package called the Microsoft Defender Experts Suite — a bundled, expert‑led offering that combines managed extended detection and response (MXDR), on‑demand and proactive incident response, and designated...

On Tuesday morning thousands of Walmart customers found themselves locked out of the retailer's digital storefronts as both the Walmart mobile app and Walmart.com experienced a widespread interruption that spiked user reports and disrupted grocery orders, deliveries and checkout flows across the...

On December 30, 2025, a fresh round of community posts — led by a DesignTAXI thread asking “Is Microsoft 365 / Azure down?” — sparked rapid alarm among admins and end users worldwide; the early signal looked like a portal-wide outage to many, but cross-checks with Microsoft’s published guidance...