The finding of fresh privilege-escalation vulnerabilities in Google’s Vertex AI is a stark reminder to CISOs that managing AI service agents is a task unlike any that they have encountered before. XM Cyber reported two different issues with Vertex AI on Thursday, in which default configurations allow low-privileged users to pivot into higher-privileged Service Agent

IT leaders are setting their operations strategies for 2026 with an eye toward agility, flexibility, and tangible business results.  Download the January 2026 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World and learn about the trends and technologies that will drive the IT agenda in the year

Google is previewing a new AI-driven feature in its BigQuery data warehouse that generates parts of SQL queries from natural-language comments, something it claims will speed up data analysis and lower the barrier to working with complex queries as enterprises look to simplify data access in order to move their AI pilots into production. The

Microsoft is offering a Microsoft Copilot Studio extension for its Visual Studio Code editor, enabling developers to build and manage Copilot Studio agents from VS Code. Launched January 14, the extension can be accessed from the Visual Studio Marketplace. The extension is intended to make it possible to develop AI agents in a familiar editor,

Astro Technology Company, maker of the Astro web framework, has just been acquired by Cloudflare. The company also just released Astro 6 in beta, with the update featuring a redesigned development server. The merger with Cloudflare means Astro remains open source and MIT-licensed and continues to be actively maintained, according to the January 16 announcement.

The gold rush across the high-end processor market might help Apple’s processor manufacturing partner, TSMC, drive harder bargains than in the past. That’s because Apple’s huge appetite for processors is being met by fast-growing demand for chips for servers. As a result, the cost of the chips used inside Macs, iPads, and iPhones will likely increase,

The first Patch Tuesday release of the new year addresses 112 CVEs across Microsoft’s product portfolio, including eight rated critical and three zero-day vulnerabilities. One of the  zero-days (CVE-2026-20805), an information disclosure flaw in the Desktop Window Manager, is already under active exploitation. That prompted CISA to add it to the Known Exploited Vulnerabilities catalog

Long before Taco Tuesday became part of the pop-culture vernacular, Tuesdays were synonymous with security — and for anyone in the tech world, they still are.  Patch Tuesday, as you most likely know, refers to the day each month when Microsoft releases security updates and patches for its software products — everything from Windows to

A new technology from digital banking platform Plumery AI aims to address a dilemma for financial institutions: how to move beyond proofs of concept and embed artificial intelligence into everyday banking operations without compromising governance, security, or regulatory compliance. Plumery’s “AI Fabric” has been positioned by the company as a standardised framework for connecting generative

After years of experimentation with artificial intelligence, retailers are striving to embed consumer insight directly into everyday commercial decisions. First Insight, a US-based analytics company specialising in predictive consumer feedback, argues that the next phase of retail AI should be epitomised by dialogue, not dashboards. Following a three-month beta programme, First Insight has made its