A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.

“Passkeys are a way to log in without using a password,” said Oleg Naumenko, chief executive officer of Hideez, a ...

Microsoft has announced a landmark $10 billion investment to accelerate Japan’s digital transformation, bolster its cybersecurity posture, and expand workforce ...

New SaaS platform delivers enterprise-grade DNS monitoring, TLS security auditing, email authentication health checks, ...

Together with Microsoft, we are enabling organizations to extend phishing-resistant authentication and continuous ...

RSA CONFERENCE – Huntress today announced the expansion of its Managed Identity Threat Detection & Response solution (ITDR) to Google Workspace (GWS). As part of the Huntress Agentic Security Platform ...

Microsoft has expanded the role of agentic AI across its core security products, pushing automated decision-making deeper ...

Microsoft Authenticator Flaw on Android, iOS Could Leak Login Codes for Millions Your email has been sent A newly discovered vulnerability in Microsoft Authenticator could expose sensitive login codes ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...

Hackers are hijacking Microsoft enterprise accounts by abusing a legitimate device-code authentication feature, tricking victims into entering attacker-generated codes on Microsoft’s own login portal.

Come along with me on a journey as we delve into the swirling, echoing madness of identity attacks. Today, I present a case study on how different implementations of OAuth 2.0, the core authentication ...

If you use Microsoft Authenticator to store your login information, it's time to take action. This month, Microsoft began deleting stored payment methods from the app, and as of Aug. 1, 2025, stored ...