“Impulsar una administración electrónica de la Junta de Comunidades más accesible, eficiente y segura, así como ofrecer unos servicios públicos más adaptados a las necesidades reales de la ciudadanía en su relación con la Administración” son los objetivos que el Gobierno de Castilla-La Mancha persigue con el “contrato estratégico” que [...]

CIOs are in a tough spot. They’re being told to spend less on IT, but at the same time, still expected to drive innovation and keep the business thriving. With the economy on shaky ground and new technologies popping up all the time, it’s getting harder to do both. But the [...]

Once again, Microsoft software is at the center of a massive global attack that has victimized vital US government agencies and businesses around the world. This time, the security hole is in SharePoint, Microsoft’s widely used collaboration software used to build company and agency websites, manage files and documents, and [...]

OpenAI’s ChatGPT may be crushing Microsoft Copilot, but Microsoft has a plan. And Mustafa Suleyman, CEO of Microsoft AI, offered up some clues about that plan on a podcast last week. He said OpenAI is interested in “superintelligence and AGI” — while Microsoft is interested in “craft and delight.” Microsoft wants [...]

Many CIOs get little exposure to what their boards actually do. Their experience is often limited to a few presentations each year with little communication in between. But as boards consider major tech trends stemming from AI, the ability for CIOs to be translators and strategic advisors is a critical [...]

With a fully automated warehouse concept, Siemens aims to increase productivity by 40 percent at the electric motor plant in Bad Neustadt, which was founded in 1937. This should enable just-in-time supply to production in the production cycle. The new logistics system, in which Siemens has invested four million euros, [...]

Every now and then, a new phone feature comes along that really makes you sit up and say: “Now, that’s cool.” Today, my fellow Android-appreciating animal, is one of those days — quite literally. No exaggeration: When I first found and tried out the feature we’re about to go over, just [...]

Google has announced that it's making a security feature called Device Bound Session Credentials (DBSC) in open beta to ensure that users are safeguarded against session cookie theft attacks. DBSC, first introduced as a prototype in April 2024, is designed to bind authentication sessions to a device so as to prevent [...]

Threat actors have been observed exploiting a now-patched critical SAP NetWeaver flaw to deliver the Auto-Color backdoor in an attack targeting a U.S.-based chemicals company in April 2025. "Over the course of three days, a threat actor gained access to the customer's network, attempted to download several suspicious files and communicated [...]

Google Cloud's Mandiant Consulting has revealed that it has witnessed a drop in activity from the notorious Scattered Spider group, but emphasized the need for organizations to take advantage of the lull to shore up their defenses. "Since the recent arrests tied to the alleged Scattered Spider (UNC3944) members in the [...]

When Indian energy giant Nayara Energy sued Microsoft on Monday for cutting off all paid-for services with no notice, it highlighted a relatively new risk for CIOs to worry about.  This goes beyond a vendor not delivering what it was supposed to, or outages that halt services. It raises the ugly [...]

Cybersecurity researchers have disclosed a now-patched critical security flaw in a popular vibe coding platform called Base44 that could allow unauthorized access to private applications built by its users. "The vulnerability we discovered was remarkably simple to exploit -- by providing only a non-secret 'app_id' value to undocumented registration and email [...]

This blog discusses how Gunra ransomware’s new Linux variant accelerates and customizes encryption, expanding the group’s reach with advanced cross-platform tactics. [...]

We examine the past tactics used by UNC3886 to gain insight on how to best strengthen defenses against the ongoing and emerging threats of this APT group. [...]

Security is a central challenge in modern application development and maintenance, requiring not just traditional practices but also a deep understanding of application architecture and data flow. While organizations now have access to rich data like logs and telemetry, the real challenge lies in translating this information into actionable insights. [...]