Sign in Subscribe

Topic

News

A collection of 10 issues

Fixed and fixed properly

This is interesting. 'Exclusive' article on Fortune today explaining how researchers discovered a zero-click attack on MS Copilot which starts with sending an email with hidden instructions (prompt injection). Microsoft have definitely fixed it though (https://fortune.com/2025/06/11/microsoft-copilot-vulnerability-ai-agents-echoleak-hacking/) BUT, because I have a memory

Be cautious

Cautionary tale, be careful because of the potential hits to your reputation and customer experience: Air Canada must honor refund policy invented by airline’s chatbotAir Canada appears to have quietly killed its costly chatbot support.Ars TechnicaAshley Belanger “Air Canada was seemingly so invested in experimenting with AI that

Sleeper Agent AI?

A long time ago there was once an incident where an application just stopped working. It was quite serious so all hands on deck to find the source of the problem. No changes, no releases, it had stopped working (I hate those ones). Long story short - old code had

Get the basics right

Doing the basics correctly and consistently is not ‘Sexy IT’. It’s not cutting edge or headline grabbing. In fact, if you don’t communicate ‘Why?’ correctly, it can be seen to be an utter hassle. But if you don’t get the basics right, it can also grab headlines.

Cost of CoPilot

It’s the weekend. But I needed to sit and read after raking up far too many leaves from the garden today. So, many, leaves. This is an interesting article as the subject has come up a couple of times in conversation recently. Microsoft 365 Copilot goes GA with 300

Zoom, AI and Privacy

This is one for EU Compliance folk. How could Zoom think they can get away with an updated terms of service (27 July) that grants them rights to utilise customer data and content - globally? With no opt out? Additionally explicitly stating it could be used for ML/AI training.

Twitter report and SRE

The Twitter Whistleblower Report given by Peiter “Mudge” Zatko makes horrifically fascinating reading. You can read it here, all 84 pages. It’s from August but highlights include: * No SDLC or separate development environments * Not possible to secure production environments * No device management or backups * No privileged access management/control

Protect your phone from thieves

This was an interesting article. I followed on Twitter the other week as Charlotte Morgan told of her phone and wallet being stolen from the gym and the thieves managed to siphon her bank account. It was confusing. Face ID, so how did that happen?? It’s happened to a