identity security

Here is a summary of the recognition Trustwave received at the 2025 SC Awards, specifically for its Managed Security Service: Trustwave: Best Managed Security Service – SC Awards 2025 Awarded For: Managed Extended Detection and Response (MXDR) for Microsoft Target Clients: Organizations using...

Netwrix has recently unveiled significant enhancements to its 1Secure SaaS platform, introducing a new Data Security Posture Management (DSPM) solution tailored for Microsoft 365 environments. This development aims to bolster identity and data security by providing organizations with advanced...

Identity-based cyberattacks have rapidly emerged as one of the most pressing security challenges facing organizations in 2024 and beyond. As digital transformation accelerates, shifting workforces to remote and hybrid models and driving deeper cloud adoption, the boundaries that once defined...

In recent weeks, Microsoft 365 users have found themselves in the crosshairs of a sophisticated business email compromise (BEC) campaign that exploits the cloud service’s very reputation for trust and reliability. Rather than launching the usual barrage of phishing emails filled with tyrannical...

Microsoft’s April 2025 Patch Sets New Security Benchmarks for Windows 11 and Windows Server Microsoft’s release cycle rarely passes without scrutiny—but its April 2025 batch of updates is proving especially consequential. With Patch Tuesday’s KB5055523 update targeting Windows 11 version 24H2...

Microsoft’s continued expansion of its security ecosystem underscores just how essential, and complex, defending modern businesses has become. With the recent announcement that Microsoft 365 E5 Security is now available as an add-on for Microsoft 365 Business Premium customers, the company is...

Business Premium Elevates Security with New E5 Add-On In today’s cybersecurity climate, even small and mid-sized businesses can no longer afford to settle for basic protection. Microsoft 365 has responded by unveiling a game-changing E5 Security add-on designed exclusively for Business Premium...

Russian threat actors have once again raised the bar for cyber espionage, turning attention toward OAuth 2.0 authentication flows in Microsoft 365, hijacking accounts connected to Ukraine and human rights organizations. Their tactics, as uncovered by cybersecurity firm Volexity, fit into a...

If you’ve already started mentally composing your next big idea in Outlook, you might want to hit “Save as Draft” for a moment—there’s a new cyberattack in town, and it’s got your Microsoft 365 credentials written all over it... possibly in Cyrillic. A New Breed of Phishing: Sophisticated Social...

There’s a certain poetic irony in the fact that OAuth 2.0—a framework specifically engineered to keep our digital lives safe from password theft—is now being bent and twisted by Russian hackers to hijack entire Microsoft 365 accounts. If that isn’t progress in the field of offensive...

Windows users and IT professionals need to take extra caution as attackers continuously refine their phishing playbook. Recent reports reveal that sophisticated adversaries are leveraging vulnerabilities in OAuth 2.0 redirection flows to target Microsoft 365 environments. In these OAuth-themed...

With more than 600 million attacks hammering away at Microsoft Entra ID every single day—a figure that might keep even the most caffeine-fortified security admin up at night—it seems only fitting that Veeam has decided to grab the digital bull by the binary horns with its just-launched SaaS...

If the relentless onslaught of over 600 million daily attacks on Microsoft Entra ID hasn’t made you lose sleep (or at least reach for another cup of coffee), then you probably weren’t aware of just how truly dire digital identity protection has become. But fear not, because Veeam Software, ever...

Well, lock up the cookies and hide your milk, because there’s a new heist in town—and it’s got a taste for your MFA-protected Microsoft sessions. Security researchers from Varonis have just dropped a proof-of-concept that makes today’s browser extension landscape about as trustworthy as a used...

If you’re still shuffling VPN connection profiles like a deck of cards every Monday morning, you might want to sit down—because everything you thought you knew about “secure remote access” is in for a major rethink. VPNs: The Ancient Relic That Won’t Retire Let’s face it: the humble VPN has been...

If you run a major chunk of your business on Microsoft 365, you might want to put that celebratory “we passed another compliance audit” cake back in the fridge, at least until you hear about the latest episode of Authentication Drama Theatre: the “Cookie Bite” attack. This newly publicized trick...

Arkose Labs, a leader in fraud prevention, has recently deepened its collaboration with Microsoft by participating in the Microsoft Security Copilot Partner Private Preview. This initiative aims to integrate Arkose Labs' advanced bot management solutions with Microsoft's AI-driven security...

Feeling nostalgic for those halcyon days when logging into your enterprise apps felt optional? Well, savor the memory—Microsoft just flipped the script. In its ongoing tug-of-war with shadowy cyber villains, the tech giant has unleashed the “Reauthentication Every Time Policy” for Entra ID, an...

When Microsoft, a perennial leviathan in enterprise software, decides to extend its embrace to a cybersecurity company, IT veterans perk up faster than a server room in a heatwave. Microsoft’s deepened relationship with Arkose Labs—provider of cross-industry account security, bot mitigation, and...

In a world where cybersecurity threats loom like dark clouds on the horizon, Microsoft is making strides with its Secure Future Initiative. Launched to tackle critical security challenges that have put both businesses and government data at risk, this initiative aims to create a robust defensive...