Skip to main content

Tag: identity

9 articles

SIM card supply network Exposed: Risky, Stunning Takedown

SIM card supply network Exposed: Risky, Stunning Takedown

Europol just tore down a sophisticated cross-border SIM card supply network that criminals used to hide identities and run scams — a stark reminder that SMS-based authentication can be easily abused. Protect yourself by using authenticator apps or security keys, monitoring accounts for unusual activity, and urging carriers to adopt stronger ID checks.

Analyst 207
100 trillion signals: Stunning Risk, Best Defense

100 trillion signals: Stunning Risk, Best Defense

Microsoft says its systems process over 100 trillion signals every day to spot threats — but AI-powered attackers are getting faster and craftier, so sheer volume alone won’t keep us safe. That reality means defenders must pair massive telemetry with smarter correlation, stronger identity protections and clearer policies to stay ahead.

Analyst 207
legacy Windows authentication: Must-Fix Risky Threat

legacy Windows authentication: Must-Fix Risky Threat

Think your network’s locked? Resecurity warns that old Windows protocols like LM, NTLM and SMBv1 can hand attackers credential hashes — inventory, isolate, and migrate now before those easy paths are abused.

Analyst 207
Scattered Spider: Must-Have Defenses Against Risky Attacks

Scattered Spider: Must-Have Defenses Against Risky Attacks

Scattered Spider is skipping the fences and walking through the front door by exploiting weak identity controls, help‑desk processes, and third‑party trust. Tightening phishing‑resistant authentication, enforcing least privilege, and hardening vendor and support workflows are the urgent, practical steps every organization must take.

Analyst 207
Microsoft Entra ID Critical Patch – Must-Have Fix

Microsoft Entra ID Critical Patch – Must-Have Fix

Heads up: Microsoft has patched a critical Entra ID token-validation bug (CVE-2025-55241) that could let attackers impersonate Global Administrators across tenants. Apply the update, rotate credentials, and review audit logs now to reduce your risk.

Analyst 207
national digital ID: Risky Must-Have That Fails

national digital ID: Risky Must-Have That Fails

A national digital ID might streamline services and cut fraud, but it also risks turning everyday life into a constant identity check — concentrating power, widening surveillance and still doing little to stop small‑boat crossings. Without strong legal safeguards, decentralised design and real alternatives, a BritCard could trade convenience for serious privacy and security dangers.

Analyst 207
phishing-as-a-service: Stunning Risky Threat

phishing-as-a-service: Stunning Risky Threat

Think a thief who never touches the lock — VoidProxy is a phishing-as-a-service that intercepts live logins, relays MFA and session tokens in real time, and lets attackers quietly hijack Microsoft and Google accounts. Learn why layered defenses, hardware-backed keys, and session risk detection are now essential to stop these fast, stealthy takeovers.

Analyst 207
Identity-based attacks: Urgent Best Defense Guide

Identity-based attacks: Urgent Best Defense Guide

Identity-based attacks are surging—infostealers and off-the-shelf phishing kits are harvesting credentials and turning stolen identities into repeatable profit. Act now: use strong, unique passwords, enable phishing-resistant MFA, and stay alert to suspicious messages to keep your digital identity safe.

Analyst 207
Identity-Based Attacks: Critical Must-Have Defense Tips

Identity-Based Attacks: Critical Must-Have Defense Tips

Identity-based attacks—up 156%—are using infostealers and lifelike phishing kits to steal logins, but you can push back with simple steps like unique passwords, a reputable password manager, and phishing-resistant MFA. Stay skeptical of unexpected prompts, keep devices patched, and teach your family the warning signs to dramatically reduce your risk.

Analyst 207