Microsoft has fixed a Windows Autopatch bug that caused driver updates restricted by administrative policies to be deployed on some Autopatch-managed Windows devices in the European Union. […]
Tag: Administrative
AI, Global Security News
Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover
An administrative role meant for artificial intelligence (AI) agents within Microsoft Entra ID could enable privilege escalation and identity takeover attacks, according to new findings from Silverfort. Agent ID Administrator is a privileged built-in role introduced by Microsoft as part of its agent identity platform to handle all aspects of an AI agent’s identity lifecycle…
AI, Apps, Global Security News, Risk Management
Microsoft patched an ‘agent-only’ role that was not
An administrative role meant for AI agents within Microsoft’s Entra ID ecosystem could allow privilege escalation and tenant takeover attacks, as it had privileges over more than agent-related objects. Researchers at Silverfort found that users assigned to Microsoft’s “Agent ID Administrator” role, scoped to agent-related objects like blueprints and agent identities, could take ownership of…
AI, Compliance, Global Security News
OneDrive updates focus on AI, access control, and compliance
Microsoft OneDrive’s recent updates focus on improving intelligence, collaboration, and administrative control. “Last year, we made a promise: your files should work for you, not the other way around. That meant reimagining OneDrive not just as a place to store files, but as an intelligent layer that surfaces what matters, eliminates busy work, and enables…
AI, Data Breaches, Global Security News, Government & Policy
French govt agency confirms breach as hacker offers to sell data
France Titres, the government agency in France for issuing and managince administrative documents has disclosed a data breach after a threat actor claimed the attack and stealing citizen data. […]
Global Security News, Network Security, privacy
Wi-Fi roaming security practices for access network providers and identity providers
Public Wi-Fi roaming networks carry authentication credentials across multiple administrative boundaries, and the protocols governing that process vary widely in their security properties. The Wireless Broadband Alliance published a set of guidelines that specifies which authentication, encryption, and credential-handling practices operators should apply to networks running Passpoint and OpenRoaming. “What this work shows is that,…
AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Cisco IMC Flaw Grants Unauthenticated Admin Access
A flaw in Cisco’s Integrated Management Controller (IMC) allows unauthenticated attackers to gain administrative access to affected UCS servers, which could potentially lead to full system compromise. The vulnerability “… could allow an unauthenticated, remote attacker to bypass authentication and gain access to the system as Admin,” said Cisco in its advisory. Cisco IMC Flaw…
AI, Global Security News, Risk Management
KnowBe4 Accelerates the Future of Human Risk Management with Expanding Suite of AI Agents
COMPANY NEWS: AI Defence Agents reduce administrative burden and transform security operations from a cost centre to a competitive advantage
AI, Global Security News, privacy
Privacy learnings on facial recognition technology from this week’s Bunnings decision
The Administrative Review Tribunal’s decision in the Bunnings matter provides important clarification on how the Privacy Act applies to the use of facial recognition technology in retail settings.