Blog
Engineering notes, case studies, and lessons from the field.
Red Hat Launches RHEL Extended Life Cycle Premium — 14 Years of Support for Enterprise Linux
Red Hat announced a new standalone RHEL subscription giving regulated industries a guaranteed 14-year major-release lifecycle and six years of extended minor-release maintenance. It targets finance, healthcare, and government teams caught in perpetual upgrade cycles.
Kubernetes v1.36 Sneak Peek: HPA Scale-to-Zero, In-Place Pod Resize, and Ephemeral Image Tokens
The Kubernetes project published its v1.36 sneak peek targeting an April 22 release. Thirty-six enhancements graduate, led by HPA scale-to-zero enabled by default, in-place pod resize at the pod level, and short-lived image pull tokens replacing static secrets.
Dorsey and Sequoia Say AI Ends Middle Management — Here's the Blueprint They Published
Jack Dorsey and Sequoia's Roelof Botha co-authored an essay arguing that corporate hierarchy exists only to route information — a job AI now does better. Published weeks after Block cut 4,000 roles, it reads less like a thought piece and more like an operating model.
Critical Cisco IMC Auth Bypass Lets Attackers Seize Full Server Control — CVE-2026-20093 (CVSS 9.8)
Cisco patched a critical unauthenticated authentication bypass in its Integrated Management Controller that gives attackers admin-level hardware control over UCS rack servers and over a dozen appliances. No credentials needed.
North Korea Stole $285M from Drift Protocol Using a Solana Feature Built for Convenience
Attackers linked to North Korea exploited Solana's durable nonces to pre-sign transactions weeks in advance and seize control of Drift's multisig, draining $285M in the largest DeFi hack of 2026. The platform has suspended deposits and withdrawals.
Oracle Cuts 30,000 Jobs — Roughly 18% of Its Workforce — to Fund AI Data Centers
Oracle began terminating up to 30,000 employees on March 31 with no prior warning, redirecting the payroll savings toward a $156 billion AI infrastructure buildout. It is the largest layoff in the company's 47-year history.
Cloudflare Built a Next.js Clone in One Week With AI — Vercel Found 7 Security Holes in Two Days
Cloudflare's experimental vinext framework reimplements the full Next.js API surface on top of Vite and ships 4.4x faster builds. Within 48 hours of release, Vercel disclosed seven vulnerabilities — two of them critical — exposing the limits of AI-generated infrastructure code.
CVE-2026-0625: Critical RCE in Legacy D-Link Routers Is Being Actively Exploited — No Patch Coming
A CVSS 9.3 command-injection flaw in discontinued D-Link DSL gateway models is being exploited in the wild for remote code execution and botnet recruitment. D-Link has confirmed it will never release a patch. If you have one of these devices, replace it now.
MCP Hits 97 Million Installs as It Becomes Standard AI Agent Infrastructure
Anthropic's Model Context Protocol crossed 97 million monthly SDK downloads on March 25, making it the fastest-adopted AI infrastructure standard in history. OpenAI, Google, Microsoft, and Mistral all integrated MCP support by mid-March 2026.
Page 1 of 7 · 63 articles