Aggregator

Security researcher Dirk-jan Mollema discovered two vulnerabilities in Microsoft's Entra ID identity platform that could have granted attackers administrative access to virtually all Azure customer accounts worldwide. The flaws involved legacy authentication systems -- Actor Tokens issued by Azure's Access Control Service and a validation failure in the retiring Azure Active Directory Graph API. Mollema reported the vulnerabilities to Microsoft on July 14. Microsoft released a global fix three days later and found no evidence of exploitation. The vulnerabilities would have allowed attackers to impersonate any user across any Azure tenant and access all Microsoft services using Entra ID authentication. Microsoft confirmed the fixes were fully implemented by July 23 and added additional security measures in August as part of its Secure Future Initiative. The company issued a CVE on September 4.

Read more of this story at Slashdot.

In a state known for dairy, football, and broken tech dreams

Microsoft's CEO has claimed the operating system-slinger is building the "world's largest datacenter."…

Retail sales volumes were up 0.5 per cent last month, slightly better than analysts had anticipated.

Construction will begin in Q4 2025

Firefighters were called to an address in Witham yesterday to rescue Peggy the parrot after she decided to wing it on her very first flight.

He wrote a letter expressing his concerns to the Secretary of State for Transport

There have been claims on social media that a man was acting suspiciously on the grounds of Leverton school

Half of people say they would like to help their family members financially but are concerned about funding their living costs later in life, according to data from Octopus Money.

The Beast In Black is back with a simple but silly factual error on the part of the gateway to all (most) human knowledge.

 

B.J.H. "The old saying is "if you don't like the weather wait five minutes". Weather.com found a time saver." The trick here is to notice that the "now" temperature is not the same as the headline temperature, also presumably now.

 

"That's some funny math you got there. Be a shame if it was right," says Jason . "The S3 bucket has 10 files in it. Picking any two (or more) causes the Download button to go disabled with this message when moused over. All I could think of is that this S3 bucket must be in the same universe as https://thedailywtf.com/articles/free-birds " Alas, we are all in the same universe as https://thedailywtf.com/articles/free-birds .

 

"For others, the markets go up and down, but me, I get real dividends!" gloats my new best friend Mr. TA .

 

David B. is waiting patiently. "Somewhere in the USPS a package awaits delivery. Either rain, nor snow, nor gloom of night shall prevent the carrier on their appointed rounds. When these rounds will occur are not the USPS's problem." We may not know the day, but we know the hour!

 

[Advertisement] Keep the plebs out of prod. Restrict NuGet feed privileges with ProGet. Learn more.

YouTube vids explain digital tradecraft to reach spooks over Tor or VPN without blowing your cover

The UK’s Secret Intelligence Service, aka MI6, has created a dark web portal called “Silent Courier” that it hopes would-be foreign informants will find a suitably secure means of sharing secrets.…

Boden's signature blend of cheerful colours and prints has made it a firm favourite in the Princess of Wales' wardrobe.

Today marks 27 years since Susan Barrantes, the mother of Sarah Ferguson , died. Susan passing shocked the Royal Family coming just a little over a year after the death of Princess Diana .

For once, a momentous royal week is met with the sound of silence from Montecito. Why would Harry and Meghan suddenly - and uncharacteristically - exhibit good manners?

The day after my mother died, I surveyed her room in the coastal Sussex care home she had moved into only a week before. She hadn't had time to make it a home.

We are a married couple who draws all of our income from savings interest but neither of us have had to submit self-assessment tax returns.

Brad, 61, was in Tokyo on June 25, when perpetrators climbed the fence and entered the home through the front windows.

Collaborationware CEO tried to smooth things over, but Hack Club now plans a strategy shift

Slack sent a nonprofit hacking club for teens a demand for $50,000, payable within a week, and threatened to delete the club’s message archive if it did not pay.…

A NZ woman revealed the tell-tale sign that led to the discovery that her fiancé was cheating on her. But calling off the wedding two weeks out from the big day wasn't the most shocking part...

An anonymous reader shares a report: Microsoft is adding a whole load of AI agents to Teams today, promising Copilot assistants for every channel, meeting, and community. The new agents will also work across SharePoint and Viva Engage, and are rolling out for Microsoft 365 Copilot users. Facilitator agents will now sit in on Teams meetings, creating agendas, taking notes, and answering questions. Agents can also suggest time allotments for different meeting topics -- letting participants know if they're running over -- and create documents and tasks. A mobile version is designed to be activated "with a single tap" so you can make sure the agent doesn't miss out on "a quick hallway chat or a spontaneous in-person sync." Channel agents are designed to answer questions based on a channel's previous conversations and meetings and can also generate status reports for a project the same way.

Read more of this story at Slashdot.

Several closures on the A12, M25 and Dartford Crossing may impact Essex drivers this weekend, according to National Highways.