News

ITWeb on MSN3d
New Okta Platform innovations extend identity security fabric to non-human identities in agentic AI future
New Okta Platform innovations extend identity security fabric to non-human identities in agentic AI futureIssued by ITWeb Security SummitJohannesburg, 25 Apr 2025Visit our press officeNon-human ...
Windows Report3d
Russian hackers exploit OAuth 2.0 to hack Microsoft 365 Accounts
Two Russian hacker groups have exploited legitimate OAuth 2.0 authentication workflows to hack multiple Microsoft 365 accounts.
Security Boulevard5d
Security Vulnerabilities in SAML, OAuth 2.0, OpenID Connect, and JWT
Implementation bugs and subtle design flaws have led to authentication bypasses ... Vendors of OIDC providers (e.g., cloud IdPs like Azure AD, Okta) usually fix things behind the scenes; open-source ...
Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts
Russian threat actors have been abusing legitimate OAuth 2.0 authentication workflows to hijack Microsoft 365 accounts of ...
Biometric Update5d
Microsoft introduces new Entra ID feature requiring reauthentication every time
The new feature lets administrators require a fresh user authentication to complete specific actions that may be sensitive or ...
heise online6d
Attacks on Microsoft NTLM authentication observed
A vulnerability in Microsoft's NTLM authentication is being abused in the wild. By sending manipulated files in emails, malicious actors redirect NTLM hashes, which they can then use to access ...
Lumos Introduces Industry's First Autonomous Identity Platform, Redefining Policy Management & Lifecycle Automation
Lumos, the industry's first Autonomous Identity Platform, has launched new capabilities that enable IT and security teams to ...
Redmondmag.com6d
Why Its Time to Move Beyond VPNs
Microsoft security expert Richard Hicks explains why now is the time for enterprises to replace legacy VPNs with Entra ...