CSO Online

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Proofpoint has warned about phishing campaigns abusing legitimate device authorization flow to bypass MFA and gain persistent ...
Federal News Network

DoD expands login options beyond CAC

The memo does not include any requirements for authenticators to be phishing-resistant, even though DoD is required to retire phishable authenticators by 2027.
GovInfoSecurity

Identity Unification Secures Ephemeral Workloads

Organizations are increasingly relying on SaaS platforms, CI/CD pipelines and AI workloads. To reduce risk introduced by ...