Communications of the ACM

Guardians of the Agents

A more advanced solution involves adding guardrails by actively monitoring logs in real time and aborting an agent’s ongoing ...
The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...
InfoQ

Yelp Publishes Blueprint for Managing S3 Server-Access Logs at Massive Scale

In a detailed engineering post, Yelp shared how it built a scalable and cost-efficient pipeline for processing Amazon S3 ...

Ho ho ho! December’s Patch Tuesday delivers three zero-days

It’s a holiday miracle with no critical Windows patches and an unusually low number of updates overall — but with three ...
CSO Online

Gladinet servers file-sharing servers allow remote code execution

Static AES keys are enabling attackers to decrypt access tokens and reach remote code execution, triggering urgent patch ...
Visual Studio Magazine

On-Premises Azure DevOps Server Reaches GA

Azure DevOps Server is now generally available as Microsoft’s production-ready, self-hosted DevOps platform, with ongoing ...
InfoQ

MySQL Repository Analysis Reveals Declining Development and Shrinking Contributor Base

A recent report has analyzed the repository statistics of the MySQL server to evaluate the project's status, Oracle's commitment to MySQL, and the future of the community edition. Julia Vural, ...

Trilliant Health Releases Free Database to Compare Hospital Prices at Scale

Trilliant Health, the healthcare industry's leading analytics firm, today announced that its comprehensive hospital price transparency dataset is now publicly available in a single DuckDB data lake, ...

AI tools spotted in the history of two accused of destroying government databases

Muneeb and Sohaib have been accused of wiping multiple databases, over several hours, taking files off company-owned laptops.

In comedy of errors, men accused of wiping gov databases turned to an AI tool

Two sibling contractors convicted a decade ago for hacking into US Department of Homeland systems have once again been ...
DataBreachToday

CISA Warns of Severe Flaws in Nuclear Med Tracking Software

U.S. federal authorities are warning that several high-severity vulnerabilities discovered in Mirion Medical Co. inventory ...

Headless vs. native semantic layer: The architectural key to unlocking 90%+ text-to-SQL accuracy

In the meantime, the big question for data leaders is where to implement this logic. The market has split into two ...