zero trust

Security Boulevard’s new roundup of the “Top 15 SSO Providers 2025” is a handy entry point for anyone modernizing authentication, but several pricing notes and protocol claims need updating—and Windows shops in particular should weigh some very specific trade-offs around Entra ID, AD FS...

SendQuick says its Conexa authentication platform has achieved FIDO2 server certification from the FIDO Alliance, a milestone the company claims will help enterprises cut password risk with phishing‑resistant, standards‑based sign‑ins. While this announcement signals a strategic shift toward...

Small and mid-sized businesses are in a race they didn’t sign up for: keep up with a threat landscape that moves faster than budgets, hiring pipelines, and legacy architectures. A recent trade feature made the case plainly—SMBs must get serious about network security and consolidation if they...

A new era of cyber resilience for Microsoft 365 environments is taking shape as Sophos and Rubrik unveil a pioneering integrated backup and recovery service. This collaboration, crystallized in the launch of Sophos M365 Backup and Recovery Powered by Rubrik, dramatically elevates data protection...

Amid the frenetic pace and crowded exhibition halls of Black Hat 2025, three vendor announcements have emerged as potential game-changers in enterprise security. With the hybrid work era pushing organizations to grapple with unmanaged devices, bring-your-own-device (BYOD) policies, and surging...

A sweeping emergency order from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has intensified the cybersecurity spotlight on Microsoft Exchange, following the disclosure of a fresh and serious vulnerability. On August 7th, 2025, CISA issued Emergency Directive 25-02 in direct...

A new wave of cybersecurity incidents and industry responses has dominated headlines in recent days, reshaping the risk landscape for businesses and consumers alike. From the hijacking of AI-driven smart homes to hardware-level battles over national security and software supply chain attacks...

Excel is on the verge of a significant security evolution as Microsoft introduces new policy changes designed to clamp down on the enduring threat of malware attacks via external links. Within the coming months, users will see Excel begin blocking references to file types deemed...

A surge of cyber threats and security debates this week highlights both the escalating sophistication of digital attacks and the evolving strategies defenders employ to stay ahead. From researchers demonstrating how Google’s Gemini AI can be hijacked via innocent-looking calendar invites to...

A seismic shift is underway in the security landscape as AI, quantum computing, and cyber-physical systems fundamentally reshape the risks and strategies that define enterprise resilience. Forward-thinking security leaders no longer ask whether disruption will hit, but rather how rapidly they...

Microsoft has unveiled a new chapter in its security journey: the launch of the Secure Future Initiative (SFI) patterns and practices—a practical, actionable library aimed at enabling organizations to implement robust security measures at scale. This resource distills Microsoft’s own...

A rapidly escalating security threat has emerged for organizations relying on Microsoft 365, as hackers have devised sophisticated phishing campaigns that can bypass even two-factor authentication (2FA) protections. Since the beginning of 2025, attackers have compromised nearly 3,000 accounts...

A new wave of cyberattacks has exposed a dangerous flaw in trusted email security services, as hackers have successfully exploited protective link-wrapping features to orchestrate large-scale phishing campaigns targeting Microsoft 365 logins. By hijacking the mechanisms designed to keep users...

Attackers have found a chillingly effective way to subvert defenses integrated into the heart of enterprise email security. According to new research from Cloudflare, threat actors are actively exploiting “link wrapping” services—offered by reputable vendors like Proofpoint and Intermedia—to...

Cybercriminals are once again redefining the threat landscape, this time by exploiting trusted email security mechanisms to compromise Microsoft 365 accounts. In a sophisticated new campaign, threat actors have weaponized link-wrapping services—previously considered pillars of safe email...

Cybercriminals have once again proven their adaptability by leveraging trusted technology—from cybersecurity companies themselves—to bypass email defenses and target Microsoft 365 users. In a revealing discovery, threat actors have been exploiting link-wrapping services from well-known vendors...

Threat actors are increasingly exploiting Microsoft 365’s Direct Send feature to conduct highly convincing internal phishing campaigns, eroding trust within organizations and challenging the efficacy of traditional security defenses. This emergent attack vector, recently highlighted by...

Migrating enterprise environments from Windows 10 domain-joined devices to Windows 11 cloud-native management with Microsoft Intune is quickly becoming a pivotal undertaking for modern organizations seeking enhanced agility, security, and user experience. As businesses position themselves for a...

Windows 11 continues its relentless pace of evolution as we move through July 2025, reinforcing its position as Microsoft’s most adaptive and enterprise-ready desktop operating system yet. With each monthly cycle, the Windows team responds to feedback not only from IT professionals and...

The July 2025 wave of Windows 11 improvements marks another significant step in Microsoft’s steady overhaul of its operating system for both enterprise and consumer users. With a blend of technical innovation, security modernization, update management efficiencies, and fresh productivity...