Microsoft decides it will be the one to choose which secure login method you use
Certificate-based authentication comes first and phones last
CSO18 May 2023 | 55
Multifactor authentication
Multifactor authentication
Microsoft disarms push notification bombers with number matching in Authenticator
Mandatory measure against attackers who spam MFA folks into submission
Security09 May 2023 | 18
Microsoft uses carrot and stick with Exchange Online admins
If you need extra time to dump RPS, OK, but email from unsupported Exchange servers is blocked till they’re up to date
Spotlight on RSA30 Mar 2023 | 16
Microsoft pushes out PowerShell scripts to fix BitLocker bypass
Attackers exploiting the vulnerability could access encrypted data
Software19 Mar 2023 | 28
Microsoft's scythe hovers over RPS for Exchange Online
Remote PowerShell Protocol users must shift into PowerShell v3 module
Software08 Mar 2023 |
DraftKings gamblers lose $300,000 to credential stuffing attack
Users of the sports betting site rolled the dice on reusing passwords and lost
Security22 Nov 2022 | 15
BROADER TOPICS
Robin Banks crooks back at the table with fresh phish from Russia
Phishing-as-a-service group's toolset now includes ways to get around MFA
Research08 Nov 2022 | 1
Microsoft hits the switch on password-free smartphone authentication
No more MF phish on this MFA cellphone as Azure AD CBA + YubiKey hits preview
Security07 Nov 2022 | 23
Multi-factor auth fatigue is real – and it's why you may be in the headlines next
Analysis Overwhelmed by waves of push notifications, worn-down users inadvertently let the bad guys in
Security03 Nov 2022 | 88
It’s 2022 and netizens are only now getting serious about cybersecurity
US folks start to get the message about protecting themselves online
Security10 Oct 2022 | 12
Microsoft: Watch out for password spray attacks – especially you, Basic Auth
Exchange Online users should have authentication policies in place
CSO04 Oct 2022 | 7
Microsoft: The deadline to get off Basic Auth is approaching
Exchange Online face Halloween deadline
OSes05 Sep 2022 | 50
RubyGems now requires multi-factor auth for top package maintainers
Sign-on you crazy diamond
Security16 Aug 2022 | 1
This big phish can swim around MFA, says Microsoft Security
Slippery AiTM attacks targeted more than 10,000 orgs over the past nine months
CSO13 Jul 2022 | 2
Keep an eye on your Experian accounts: Some profiles hijacked using personal info
When identity thieves strike your identity theft monitor
Personal Tech12 Jul 2022 | 8
Start using Modern Auth now for Exchange Online
Before Microsoft shutters basic logins in a few months
CSO29 Jun 2022 | 28
Carnival Cruises torpedoed by US states, agrees to pay $6m after wave of cyberattacks
Now those are some phishing boats
Cyber-crime28 Jun 2022 | 17
Okta says Lapsus$ incident was actually a brilliant zero trust demonstration
Once former supplier Sitel coughed up its logs, it became apparent the attacker was hemmed in
Security22 Jun 2022 | 4
Biting the hand that feeds IT
