The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...

Two of the bigger authentication announcements to come out of the recent RSA Conference both point in the same direction: Organizations need a more flexible, unified approach to identity security, ...

Microsoft will enforce stronger Kerberos encryption in April 2026, removing RC4 support and potentially impacting enterprise setups.

Microsoft's public cloud computing platform, Azure, was recently targeted by a cyberattack that led to a multi-hour outage. While a newly announced mandatory two-factor authentication login ...

This post will show you how to enable multifactor authentication in Microsoft 365. Multifactor Authentication (MFA) provides an extra level of security for sign-ins. In Microsoft 365, MFA includes a ...

The phishing-as-a-service toolkit leverages legitimate authentication to capture tokens and access Microsoft 365 services.

Microsoft is investigating an ongoing incident that is causing users to experience errors with some Microsoft 365 authentication features. As the company revealed earlier today in an incident alert ...

A global phishing campaign targeting Microsoft 365 bypasses security codes using a legitimate login feature, impacting hundreds of organizations.

While online accounts are increasingly protected by passkey technology, it turns out that many banking, e-commerce, social media, website domain name administration, software development platforms, ...

Microsoft is finally ripping out one of the weakest links in its identity stack, cutting off a legacy cipher that attackers have abused for years to walk straight into corporate networks. The move ...

A financially motivated threat actor tracked as Storm-2755 is stealing Canadian employees' salary payments after hijacking ...