In early March 2026, Microsoft released an important security update addressing a high-severity vulnerability in Active Directory Domain Services (AD DS) tracked as CVE-2026-25177. The flaw received a CVSS score of 8.8 and can allow an authenticated network actor with limited permissions to escalate privileges to full SYSTEM on a targeted domain controller. Microsoft and third-party researchers coordinated fixes and
Author: Saugata Datta
I’m an IT/DevOps professional with many years of hands-on experience across Windows, Linux, Automation, Backup and Cloud. I love building real-world automations to make infrastructure reliable, secure, and self-healing. Through this blog, I share practical learnings from enterprise projects and my home-lab experiments on Cloudflare, Self-Hosting and everything in between. Always tinkering, always improving.
Google Completes $32 Billion Acquisition of Wiz
Google has finalized its acquisition of Wiz, the Israeli cloud and AI security company, in an all-cash transaction valued at $32 billion. The deal, announced as closed in March 2026, is the largest acquisition in Google’s history and represents a major move by Google Cloud to deepen its capabilities in cloud-native and AI security. Deal overview The acquisition brings the
China’s OpenClaw Gold Rush: How a Viral AI Agent Spawned a New Service Economy
China has seen a rapid, real-world surge of interest in OpenClaw — an open-source AI agent that can run autonomously on personal devices — and that surge has produced a small but booming service economy of installers, preconfigured devices, and paid support. This post summarizes reported facts about how OpenClaw spread, who is profiting, what services are being offered, and
Zombie ZIP: How Malformed Archives Can Hide Malware from Security Scanners
A new archive-manipulation technique called “Zombie ZIP” lets attackers conceal payloads inside ZIP files in a way that can evade many antivirus and endpoint detection solutions. The method was described by security researcher Chris Aziz of Bombadil Systems and has drawn warnings from CERT/CC and the wider security community. This post explains how Zombie ZIP works, what research and evidence
Microsoft .NET Out-of-Bounds Read (CVE-2026-26127) Causes Remote Denial-of-Service Risk
Microsoft has issued an emergency security update to address a newly disclosed vulnerability in the .NET ecosystem that can be triggered remotely and results in denial-of-service (DoS) conditions. The flaw, tracked as CVE-2026-26127, affects multiple .NET runtime and package versions across Windows, macOS, and Linux. Administrators and developers should prioritize applying the available patches to prevent service disruption. What the
Microsoft Copilot Cowork: Automating Multi-Step Workflows Inside Microsoft 365
Microsoft announced Copilot Cowork as a new Copilot capability for Microsoft 365 that moves beyond single-response assistance to plan-and-execute workflows across Microsoft 365 apps and files. Cowork converts a user’s intent into a structured plan, runs the plan across supported apps and data sources, and surfaces checkpoints that require user confirmation before applying changes. The feature is positioned to operate