The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
ICS/OT
Remote Workforce
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Physical Security
IoT
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Cybersecurity Outlook 2023 - December 13 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Cloud Security Essentials
Dec 07, 2022
Seeing Your Attack Surface Through the Eyes of an Adversary
Dec 08, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft
Partner Perspectives: Zscaler
Subscribe
Login
/
Register
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
ICS/OT
Remote Workforce
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Physical Security
IoT
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Cybersecurity Outlook 2023 - December 13 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Cloud Security Essentials
Dec 07, 2022
Seeing Your Attack Surface Through the Eyes of an Adversary
Dec 08, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft
Partner Perspectives: Zscaler
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
ICS/OT
Remote Workforce
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Physical Security
IoT
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Cybersecurity Outlook 2023 - December 13 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Cloud Security Essentials
Dec 07, 2022
Seeing Your Attack Surface Through the Eyes of an Adversary
Dec 08, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft
Partner Perspectives: Zscaler
Subscribe
Login
/
Register
SEARCH
A minimum of 3 characters are required to be typed in the search bar in order to perform a search.
Announcements
Event
Cybersecurity Outlook 2023 - A Dark Reading, Black Hat, Omdia December 13 Virtual Event | <GET YOUR PASS>
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
Previous
Next
Identity & Access Management
Breaking news, news analysis, and expert commentary on cybersecurity operations, and the tools & technologies for security teams.
Bring Your Own Key — A Placebo?
BYOK was envisioned to reduce the risk of using a cloud service provider processing sensitive data, yet there are several deficiencies.
November 28, 2022
BYOK was envisioned to reduce the risk of using a cloud service provider processing sensitive data, yet there are several deficiencies.
by Erez Kalman, Security Architect | CISSP-ISSAP, CISM, CISA, CSSLP, CCSP, CDPSE
November 28, 2022
4 MIN READ
Article
Google Releases YARA Rules to Disrupt Cobalt Strike Abuse
The popular pen-testing tool is often cracked and repurposed by threat actors. Google now has a plan to address that.
November 21, 2022
The popular pen-testing tool is often cracked and repurposed by threat actors. Google now has a plan to address that.
by Karen Spiegelman, Features Editor
November 21, 2022
1 MIN READ
Article
Patch ASAP: Critical Citrix, VMware Bugs Threaten Remote Workspaces With Takeover
Hole-y software alert, Batman: Cybercriminal faves Citrix Gateway and VMware Workspace ONE have authentication-bypass bugs that could offer up total access to attackers.
November 09, 2022
Hole-y software alert, Batman: Cybercriminal faves Citrix Gateway and VMware Workspace ONE have authentication-bypass bugs that could offer up total access to attackers.
by Tara Seals, Managing Editor, News, Dark Reading
November 09, 2022
3 MIN READ
Article
A Better Way to Resist Identity-Based Cyber Threats
New approaches to identity access management are indispensable.
November 09, 2022
New approaches to identity access management are indispensable.
by Marcus Bartram, General Partner, Telstra Ventures
November 09, 2022
4 MIN READ
Article
Thoma Bravo to Acquire ForgeRock in $2.3B Deal
This marks the third identity and access management (IAM) company acquired by Thoma Bravo in just the past few months.
October 12, 2022
This marks the third identity and access management (IAM) company acquired by Thoma Bravo in just the past few months.
by Dark Reading Staff, Dark Reading
October 12, 2022
1 MIN READ
Article
Key Takeaways From Omdia's IGA Market Radar
Identity governance administration (IGA) started life as a tool for organizations to meet a sudden surge of legal and regulatory requirements, but it has grown into a key enabler of security.
October 12, 2022
Identity governance administration (IGA) started life as a tool for organizations to meet a sudden surge of legal and regulatory requirements, but it has grown into a key enabler of security.
by Don Tait, Senior Analyst, Omdia
October 12, 2022
3 MIN READ
Article
Email Defenses Under Siege: Phishing Attacks Dramatically Improve
About 1 in 5 phishing email messages reach workers' inboxes, as attackers get better at dodging Microsoft's platform defenses and defenders run into processing limitations.
October 08, 2022
About 1 in 5 phishing email messages reach workers' inboxes, as attackers get better at dodging Microsoft's platform defenses and defenders run into processing limitations.
by Robert Lemos, Contributing Writer, Dark Reading
October 08, 2022
4 MIN READ
Article
Microsoft Confirms Pair of Blindsiding Exchange Zero-Days, No Patch Yet
The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
September 30, 2022
The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
by Tara Seals, Managing Editor, News, Dark Reading
September 30, 2022
3 MIN READ
Article
The Country Where You Live Impacts Password Choices
Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
September 29, 2022
Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
by Tara Seals, Managing Editor, News, Dark Reading
September 29, 2022
4 MIN READ
Article
Fast Company CMS Hack Raises Security Questions
The company's website remains offline after hackers used its compromised CMS to send out racist messages.
September 28, 2022
The company's website remains offline after hackers used its compromised CMS to send out racist messages.
by Tara Seals, Managing Editor, News, Dark Reading
September 28, 2022
2 MIN READ
Article
Amid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
September 27, 2022
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
by Tara Seals, Managing Editor, News, Dark Reading
September 27, 2022
4 MIN READ
Article
Microsoft Rolls Out Passwordless Sign-on for Azure Virtual Desktop
Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
September 27, 2022
Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
by Dark Reading Staff, Dark Reading
September 27, 2022
1 MIN READ
Article
Cyberattackers Compromise Microsoft Exchange Servers via Malicious OAuth Apps
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
September 23, 2022
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
by Nathan Eddy, Contributing Writer, Dark Reading
September 23, 2022
2 MIN READ
Article
Microsoft Looks to Enable Practical Zero-Trust Security With Windows 11
With the update, Microsoft adds features to allow easier deployment of zero-trust capabilities. Considering the 1.3 billion global Windows users, the support could make a difference.
September 23, 2022
With the update, Microsoft adds features to allow easier deployment of zero-trust capabilities. Considering the 1.3 billion global Windows users, the support could make a difference.
by Robert Lemos, Contributing Writer, Dark Reading
September 23, 2022
5 MIN READ
Article
2-Step Email Attack Uses Powtoon Video to Execute Payload
The attack uses hijacked Egress branding and the legit Powtoon video platform to steal user credentials.
September 20, 2022
The attack uses hijacked Egress branding and the legit Powtoon video platform to steal user credentials.
by Dark Reading Staff, Dark Reading
September 20, 2022
1 MIN READ
Article
