InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...

Microsoft Patch Tuesday Fixes 112 Flaws, Includes SharePoint and Windows

Microsoft’s January 2026 Patch Tuesday fixes 112 CVEs, including an exploited Windows DWM zero-day, plus critical flaws ...
The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...
Redmondmag.com

Azure SQL Now Captures Read-Only Queries in the Primary Query Store

Microsoft has announced that read-only queries are now captured in the primary Query Store for Azure SQL, expanding visibility into database performance and workload behavior. Pre ...