Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
PCQuest

Iran targets Israel in a Microsoft 365 attack that looked local

Iran-linked hackers targeted Israel with a Microsoft 365 attack that looked local, exposing how weak cloud defenses can miss ...
SecurityWeek

Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access

The Google API keys, all using the ‘AIza…’ format, can be abused for retroactive privilege escalation: a key that a developer ...
Campus Technology

Microsoft, RSA Make Identity Security Push in the Age of AI

Two of the bigger authentication announcements to come out of the recent RSA Conference both point in the same direction: Organizations need a more flexible, unified approach to identity security, ...
THE Journal

Microsoft, RSA Updates Focus on Identity Security in the Age of AI

Two authentication announcements coming out of the recent RSA Conference both point in the same direction: Organizations need a more flexible, unified approach to identity security, especially as AI ...
Virtualization Review

Expert Consultant Details How to Secure the Machine Identity Attack Surface

Sergey Chubarov explained how unmanaged non-human identities such as service accounts, API keys and tokens can become a major attack vector and outlined practical steps to improve visibility, ...