identity security

When considering disaster resilience for Microsoft 365, the discussion often revolves around infrastructure, backup, and failover. However, insight from leading industry experts reveals a more foundational vulnerability—identity. At a pivotal summit hosted by Virtualization & Cloud Review, IT...

When it comes to ensuring the continuous availability and resilience of Microsoft 365 environments, much of the traditional advice centers around robust backup strategies and disaster recovery planning. However, as highlighted in a recent expert session at a Virtualization & Cloud Review summit...

Identity has rapidly become the new battleground in the fight for organizational security, especially as cybercriminals innovate to sidestep robust perimeter defenses. While firewalls, endpoint protection, and phishing detection continuously improve, attackers are leveraging stolen or...

Microsoft is heralding a new era for enterprise identity security with the general availability of linkable token identifiers in Entra ID, the latest upgrade to its modern identity platform. This innovation is designed to combat one of the most persistent challenges in cybersecurity: the...

In an era where cyber threats evolve each day and security teams struggle to stay ahead of ever-morphing attack vectors, BitLyft’s latest release of its AIR® platform signals a fundamental shift in the very nature of incident response for Windows-centric environments. BitLyft AIR, now...

Semperis, a leader in identity security, has recently unveiled a critical vulnerability in Windows Server 2025's delegated Managed Service Accounts (dMSAs), termed the "Golden dMSA" attack. This flaw enables attackers to bypass authentication mechanisms and generate passwords for all dMSAs and...

Optimal IdM, a prominent provider of Identity and Access Management (IAM) solutions, has recently unveiled a universal Multi-Factor Authentication (MFA) integration tailored for Microsoft Azure tenants. This development signifies a substantial advancement in bolstering security measures for...

Organizations of every size have come to rely on Microsoft 365 as the digital nervous system powering their communication, collaboration, and data management. With its robust ecosystem—spanning Exchange Online, SharePoint, Teams, and the evolving Entra ID (Azure AD)—Microsoft 365 has brought...

Security researchers have recently uncovered a critical technique that could allow attackers to seize Global Administrator access in Microsoft Entra ID, raising significant concerns across the enterprise security landscape. The vulnerability—first reported by Datadog and detailed in the Petri IT...

In recent developments, cybersecurity researchers have uncovered a sophisticated phishing toolkit named PoisonSeed, designed to circumvent the robust protections offered by FIDO2 authentication. This malicious tool targets users of Microsoft 365, Google Workspace, and Okta by redirecting their...

Here’s a summary of the critical flaw "Golden dMSA" in Windows Server 2025 reported by Semperis: What is Golden dMSA? Golden dMSA is a newly discovered, critical design flaw in delegated Managed Service Accounts (dMSA) on Windows Server 2025. Discovered by: Semperis, a security research and...

Semperis has unveiled a critical design flaw in Windows Server 2025's delegated Managed Service Accounts (dMSAs), termed "Golden dMSA." This vulnerability allows attackers to generate service account passwords, facilitating undetected, persistent access across Active Directory environments. The...

Semperis, a leader in identity security, has uncovered a critical design flaw in Windows Server 2025 that exposes Delegated Managed Service Accounts (dMSAs) to a high-impact attack known as "Golden dMSA." This vulnerability enables attackers to perform cross-domain lateral movements and maintain...

The evolving threat landscape for enterprises and public institutions is continually shaped by the tactics of advanced cybercriminal groups. Among them, Octo Tempest—also known as Scattered Spider, Muddled Libra, UNC3944, and 0ktapus—has emerged as one of the most adaptive and persistent...

A pivotal security development has emerged from the world of enterprise identity management: a critical flaw has been identified in delegated Managed Service Accounts (dMSA) within Windows Server 2025. This vulnerability, discovered and named the “Golden dMSA” attack by Semperis security...

Microsoft has recently expanded its Security Copilot assistant to integrate seamlessly with Microsoft Intune and Microsoft Entra, introducing AI-driven features aimed at enhancing endpoint management and identity infrastructure. This development underscores the pivotal roles of Intune and Entra...

The cybersecurity stakes for today’s businesses have never been higher, with record numbers of threats, mounting regulatory pressure, and a continuous shortage of experienced infosec professionals. Recent years have seen sustained attacks ranging from sophisticated ransomware to nation-state...

In the ever-shifting landscape of cybersecurity, the partnership between Huntress and Microsoft marks a significant strategic development for businesses worldwide, particularly for organisations facing technical and resource-related constraints. With cyberattacks escalating in both frequency and...

In an era where identity is the ultimate gatekeeper for digital business, organizations face growing threats to the very core of their cloud ecosystems: their identity and access management (IAM) data. As more enterprises migrate their operations to the cloud and leverage Microsoft Entra ID...

As cyberattacks escalate in both frequency and sophistication, businesses around the world are grappling with an unyielding wave of threats targeting their data, assets, and operations. In a bold move designed to address these persistent challenges, Huntress, a rising force in enterprise-grade...