identity security

Innovative Phishing Tactics Threaten Critical Infrastructure Russian state-backed APT group Storm-2372 has triggered a new alarm in the cybersecurity community by leveraging an ingenious form of device code phishing to sidestep multi-factor authentication (MFA). This sophisticated attack...

The rapid evolution of cloud environments and an explosion of both human and machine identities have compelled enterprises to reevaluate how they secure access to their critical resources. With Microsoft Entra Permissions Management set to retire on October 1, 2025, a fresh chapter in cloud...

In a bid to raise the bar on identity security, Microsoft is rolling out new, automatically deployed policies targeting a growing vulnerability: Device Code Flow attacks. Featured in the latest edition of Entra 🆔 News (#85), these updates mark another significant step in Microsoft’s ongoing...

In an era where digital transformation is paramount, k9 Security is making waves in the cloud security arena with its latest release: the Access Analyzer for Azure. This innovative solution aims to tackle the complex world of identity security and access governance, specifically for Microsoft...