identity theft

DuckDuckGo has quietly retooled its paid offering into a one-stop privacy and AI bundle, adding access to higher‑end chat models while keeping the $9.99/month price and the three core privacy protections that first made the subscription notable. Background DuckDuckGo started as a privacy-first...

In the second quarter of 2024, Microsoft emerged as the most impersonated brand in phishing attacks, accounting for 57% of such incidents, according to Check Point Research. This significant increase underscores the growing trend of cybercriminals targeting major technology companies to exploit...

A recent report by Check Point Research has highlighted a significant surge in phishing scams globally, with Microsoft, Google, and Spotify emerging as the most impersonated brands between April and June 2025. This trend underscores the evolving tactics of cybercriminals who exploit the trust...

Organizations of every size have come to rely on Microsoft 365 as the digital nervous system powering their communication, collaboration, and data management. With its robust ecosystem—spanning Exchange Online, SharePoint, Teams, and the evolving Entra ID (Azure AD)—Microsoft 365 has brought...

A pivotal security development has emerged from the world of enterprise identity management: a critical flaw has been identified in delegated Managed Service Accounts (dMSA) within Windows Server 2025. This vulnerability, discovered and named the “Golden dMSA” attack by Semperis security...

In an era where identity is the ultimate gatekeeper for digital business, organizations face growing threats to the very core of their cloud ecosystems: their identity and access management (IAM) data. As more enterprises migrate their operations to the cloud and leverage Microsoft Entra ID...

Cybersecurity professionals worldwide have watched for years as the battle between defenders and attackers has grown increasingly sophisticated. But a new wave of threats is now on the horizon—one where generative AI acts as the great equalizer, equipping even novice cybercriminals with the...

Microsoft’s cloud ecosystem continues to underpin enterprise digital transformation—yet the discovery and persistence of the nOAuth vulnerability within Entra-integrated applications shines a harsh light on lingering risks at the intersection of identity management, software-as-a-service, and...

Cross-border law enforcement efforts achieved a notable breakthrough as Microsoft and international authorities joined forces to dismantle a far-reaching transnational scam network targeting older adults. The collaborative operation exemplifies how coordinated interventions, advanced...

A recent massive data breach has exposed over 184 million user records, compromising sensitive information from major platforms such as Apple, Google, Meta, Microsoft, Instagram, and Snapchat. The breach includes emails, passwords, and authorization URLs, all stored in plain text, making them...

A massive data breach has triggered shockwaves throughout the cybersecurity landscape, with over 184 million passwords reportedly leaked and some of the world’s most prominent technology brands implicated. This incident is distinguished not only by its monumental scale but also by the...

In the still-expanding digital landscape of 2024, another catastrophic cybersecurity incident has emerged, sending shockwaves across the United States and beyond. Over 184 million passwords, along with associated email addresses and critical login links, have been exposed in a sweeping data...

A recent security breach has exposed over 184 million passwords, along with associated email addresses and plain-text login URLs, raising significant concerns among U.S. consumers. The unprotected database was discovered by cybersecurity researcher Jeremiah Fowler, who noted that the leaked data...

A significant data breach has exposed over 184 million records, including emails, passwords, and login links, from major companies such as Apple, Google, Facebook, Microsoft, as well as banks and government services. This unprotected database was discovered by cybersecurity expert Jeremiah...

Microsoft Windows users across the globe are facing a new and insidious threat that exploits a trusted channel—genuine purchase notification emails from Microsoft itself. In a sophisticated campaign first discovered by the security research team at Kaspersky, attackers are leveraging real...

Microsoft business users are being alerted to a stealthy and sophisticated wave of attacks exploiting the trust built into official Microsoft 365 notifications. Leveraging the genuine “microsoft-noreply@microsoft.com” address, cybercriminals are injecting malicious content into transactional...

In April 2025, SK Telecom, South Korea's largest mobile telecommunications provider, faced an unprecedented cyberattack that compromised the Universal Subscriber Identity Module (USIM) data of approximately 25 million customers. This breach not only exposed sensitive subscriber information but...

In a case that has electrified both federal cybersecurity circles and the wider tech community, a detailed whistleblower disclosure alleges the Department of Government Efficiency (DOGE), under the controversial leadership of Elon Musk, was complicit in a significant data breach at the National...

Microsoft Copilot Spoofing: The Latest Phishing Threat in the Era of Generative AI As digital ecosystems expand and integrate ever more powerful tools like generative AI, new avenues of attack inevitably emerge for cybercriminals. The widespread adoption of Microsoft Copilot—a smart assistant...

Tam Nguyen will probably never forget the call from the Department of Homeland Security that cracked open his winter break in December 2023 like a sledgehammer to a snow globe. As the tech chief for Orange Unified School District in California, Nguyen’s first impulse was skepticism—after all...