As SQL Server 2016 approaches end of support in July 2026, a look back at its groundbreaking innovations reveals how it reshaped Microsoft's data platform and why it's time to move forward.

Are magic links secure? A security analyst breaks down token entropy, replay protection, expiry, device binding, and email compromise risks for MojoAuth users.

SQL Server backups cannot be restored to older versions directly. Use Export and Import Data-Tier Application for cross-version database migration. Reconfigure permissions, logins, and connection ...

On 27 April, the government backed security certification scheme, Cyber Essentials v3.3, takes effect and multi-factor authentication (MFA) becomes a pass-or-fail requirement for the first time. If a ...

Credential compromise attacks allow adversaries to gain unauthorized access to PV systems by stealing or guessing valid login credentials, enabling them to manipulate operations, disrupt monitoring, ...

A new infostealer called Storm appeared on underground cybercrime networks in early 2026, representing a shift in how credential theft is developing. For under $1,000 a month, operators get a stealer ...

Database credentials remain one of the most common attack vectors in enterprise breaches, yet most organisations still manage them through shared spreadsheets, hardcoded connection strings, or ...

Scary news: Hackers aren't "breaking" your MFA anymore — they’re just riding shotgun during your login to steal the session token right out from under you. Multi-factor authentication was supposed to ...

This week, we are excited to kick off SQLCon 2026 alongside FabCon in Atlanta. Bringing these SQL and Fabric communities together creates a unique opportunity to learn, connect, and share what’s next ...

The spillover from a ransomware attack on one of the largest government contractors in the United States keeps getting bigger: More than 25 million people have now had personal data stolen in the hack ...

A growing phishing-as-a-service (PhaaS) tool reliably undermines traditional methods for detecting phishing attacks, both technical and psychological. "Starkiller," described this week by researchers ...

Credential stuffing attacks use stolen passwords to log in at scale. Learn how they work, why they’re rising, and how to defend with stronger authentication. For many organizations, cybersecurity ...