Unwitting employees register a hacker’s device to their account; the crook then uses the resulting OAuth tokens to maintain persistent access.

Hackers exposed personal data from 967,200 Figure accounts in a social engineering attack, including names, addresses, emails and dates of birth.

The best defense in 2026 continues to be quality end-user security training. This training needs to be short, engaging, ongoing and monitored by management. If you’re looking to improve your training ...

Artificial intelligence is changing the pace of cyber risks and how companies defend against them. Understanding new threats and how to train employees so they are a strong line of defense against ...

Master WS-Federation for hybrid identity. Learn how to bridge legacy ASP.NET apps with modern Entra ID and OIDC using the .NET 10 Passive Requestor Profile.

AWS now has confirmed its AI actually did delete and recreate an environment, but is blaming a human engineer for the mishap. AI firms blaming humans is becoming a recurring theme.

One of the first public messages British retailer Marks & Spencer issued following its customer data breach in April 2025 ...

AI demands machine identities, zero-trust controls and stronger governance, as autonomous systems reshape security, ...

Hackers have launched a massive campaign targeting Microsoft 365 and Entra ID (formerly Azure AD) users in a phishing and vishing attack.

AI will dominate RSA’s presentations and discussions. To separate hopeful hype from practical solutions, security leaders ...

Monthly cloud outages, like the recent Azure one, continue to disrupt enterprises worldwide. The culprits include hiring challenges, neglected resilience, and increasing complexity.