Topic: identity attacks
-
One Stolen Password Can Breach Your Entire System
Identity has become the primary attack vector, with stolen credentials and phishing driving nearly 90% of breaches and enabling attackers to bypass multi-factor authentication. The explosion of cloud services and SaaS applications has created a vast, poorly managed attack surface, where 99% of cl...
Read More » -
Unlock Cyber Resilience: Security Awareness Month 2025
Cybersecurity Awareness Month emphasizes the need for collective digital defense as identity-based attacks, accounting for nearly 80% of incidents, exploit compromised credentials to bypass traditional perimeter security. Adopting zero trust principles, such as least privilege and just-in-time ac...
Read More » -
Microsoft's 2025 Cyberdefense Report: The New Rules of Engagement
AI is fundamentally reshaping cybersecurity by empowering attackers to refine methods, automate operations, and overwhelm traditional defenses, with nation-state actors increasingly leveraging AI for phishing, vulnerability identification, and malware modification. Identity has become the primary...
Read More » -
Uncover Malicious OAuth Apps in Microsoft 365 with Cazadora
Auditing OAuth applications in Microsoft 365 is critical due to the high risk of malicious apps, which can severely compromise security. Use an open-source script to identify suspicious apps by checking for indicators like mimicry of user names, generic names, or anomalous reply URLs. Huntress re...
Read More »