The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Understanding Cyber Attackers - A Dark Reading Nov 17 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Using Zero Trust to Protect Remote and Home Workers
Oct 06, 2022
Strategies for DDoS Resilience and Response
Oct 18, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft >
Subscribe
Login
/
Register
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Understanding Cyber Attackers - A Dark Reading Nov 17 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Using Zero Trust to Protect Remote and Home Workers
Oct 06, 2022
Strategies for DDoS Resilience and Response
Oct 18, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft >
The Edge
DR Tech
Sections
Close
Back
Sections
Featured Sections
The Edge
Dark Reading Technology
Attacks / Breaches
Cloud
IoT
Physical Security
Perimeter
Analytics
Security Monitoring
Security Monitoring
App Sec
Database Security
Database Security
Risk
Compliance
Compliance
Threat Intelligence
Endpoint
Authentication
Mobile Security
Privacy
Authentication
Mobile Security
Privacy
Vulnerabilities / Threats
Advanced Threats
Insider Threats
Vulnerability Management
Advanced Threats
Insider Threats
Vulnerability Management
Operations
Identity & Access Management
Careers & People
Identity & Access Management
Careers & People
Remote Workforce
Black Hat news
Omdia Research
Security Now
Events
Close
Back
Events
Events
Understanding Cyber Attackers - A Dark Reading Nov 17 Event
Black Hat Europe - December 5-8 - Learn More
Webinars
Using Zero Trust to Protect Remote and Home Workers
Oct 06, 2022
Strategies for DDoS Resilience and Response
Oct 18, 2022
Resources
Close
Back
Resources
Reports >
Slideshows >
Tech Library >
Webinars >
White Papers >
Partner Perspectives: Microsoft >
Subscribe
Login
/
Register
SEARCH
A minimum of 3 characters are required to be typed in the search bar in order to perform a search.
Announcements
Event
Using Zero Trust to Protect Remote and Home Workers | Oct 6 Webinar | <REGISTER NOW>
Event
Managing Security In a Hybrid Cloud Environment | Sept 27 Webinar | <REGISTER NOW>
Event
Understanding Cyber Attackers - A Dark Reading November 17 Virtual Event | <GET YOUR PASS>
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
Previous
Next
Identity & Access Management
Breaking news, news analysis, and expert commentary on cybersecurity operations, and the tools & technologies for security teams.
Microsoft Confirms Pair of Blindsiding Exchange Zero-Days, No Patch Yet
The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
September 30, 2022
The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
by Tara Seals, Managing Editor, News, Dark Reading
September 30, 2022
3 MIN READ
Article
The Country Where You Live Impacts Password Choices
Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
September 29, 2022
Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
by Tara Seals, Managing Editor, News, Dark Reading
September 29, 2022
4 MIN READ
Article
Fast Company CMS Hack Raises Security Questions
The company's website remains offline after hackers used its compromised CMS to send out racist messages.
September 28, 2022
The company's website remains offline after hackers used its compromised CMS to send out racist messages.
by Tara Seals, Managing Editor, News, Dark Reading
September 28, 2022
2 MIN READ
Article
Amid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
September 27, 2022
Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
by Tara Seals, Managing Editor, News, Dark Reading
September 27, 2022
4 MIN READ
Article
Microsoft Rolls Out Passwordless Sign-on for Azure Virtual Desktop
Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
September 27, 2022
Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
by Dark Reading Staff, Dark Reading
September 27, 2022
1 MIN READ
Article
Cyberattackers Compromise Microsoft Exchange Servers via Malicious OAuth Apps
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
September 23, 2022
Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
by Nathan Eddy, Contributing Writer, Dark Reading
September 23, 2022
2 MIN READ
Article
Microsoft Looks to Enable Practical Zero-Trust Security With Windows 11
With the update, Microsoft adds features to allow easier deployment of zero-trust capabilities. Considering the 1.3 billion global Windows users, the support could make a difference.
September 23, 2022
With the update, Microsoft adds features to allow easier deployment of zero-trust capabilities. Considering the 1.3 billion global Windows users, the support could make a difference.
by Robert Lemos, Contributing Writer, Dark Reading
September 23, 2022
5 MIN READ
Article
2-Step Email Attack Uses Powtoon Video to Execute Payload
The attack uses hijacked Egress branding and the legit Powtoon video platform to steal user credentials.
September 20, 2022
The attack uses hijacked Egress branding and the legit Powtoon video platform to steal user credentials.
by Dark Reading Staff, Dark Reading
September 20, 2022
1 MIN READ
Article
Beware of Phish: American Airlines, Revolut Data Breaches Expose Customer Info
The airline and the fintech giant both fell to successful phishing attacks against employees.
September 20, 2022
The airline and the fintech giant both fell to successful phishing attacks against employees.
by Tara Seals, Managing Editor, News, Dark Reading
September 20, 2022
2 MIN READ
Article
Real Estate Phish Swallows 1,000s of Microsoft 365 Credentials
The attacks showcase broader security concerns as phishing grows in volume and sophistication, especially given that Windows Defender's Safe Links feature for identifying malicious links in emails completely failed in the campaign.
September 16, 2022
The attacks showcase broader security concerns as phishing grows in volume and sophistication, especially given that Windows Defender's Safe Links feature for identifying malicious links in emails completely failed in the campaign.
by Tara Seals, Managing Editor, News, Dark Reading
September 16, 2022
8 MIN READ
Article
Hacker Pwns Uber Via Compromised VPN Account
A teen hacker reportedly social-engineered an Uber employee to hand over an MFA code to unlock the corporate VPN, before burrowing deep into Uber's cloud and code repositories.
September 16, 2022
A teen hacker reportedly social-engineered an Uber employee to hand over an MFA code to unlock the corporate VPN, before burrowing deep into Uber's cloud and code repositories.
by Tara Seals, Managing Editor, News, Dark Reading
September 16, 2022
4 MIN READ
Article
Business Security Starts With Identity
How identity-centric security can support business objectives.
September 13, 2022
How identity-centric security can support business objectives.
by Josephina Fernandez, Senior Director of Enterprise Security, Cisco
September 13, 2022
4 MIN READ
Article
Microsoft, Cloud Providers Move to Ban Basic Authentication
Microsoft moves ahead with a plan to sunset basic authentication, and other providers are moving — or have moved — to requiring more secure authentication as well. Is your company ready?
September 09, 2022
Microsoft moves ahead with a plan to sunset basic authentication, and other providers are moving — or have moved — to requiring more secure authentication as well. Is your company ready?
by Robert Lemos, Contributing Writer, Dark Reading
September 09, 2022
4 MIN READ
Article
Former Conti Ransomware Members Join Initial Access Broker Group Targeting Ukraine
The initial access broker (IAB) for ransomware gangs known as UAC-0098 has targeted Ukrainian organizations in five separate phishing campaigns spanning April to August.
September 08, 2022
The initial access broker (IAB) for ransomware gangs known as UAC-0098 has targeted Ukrainian organizations in five separate phishing campaigns spanning April to August.
by Elizabeth Montalbano, Contributor, Dark Reading
September 08, 2022
5 MIN READ
Article
Iran-Linked APT Cozies Up to 'Enemies' in Trust-Based Spy Game
APT42 is posing as a friend to people considered threats to the government, using a raft of different tools to steal relevant info and perform surveillance.
September 07, 2022
APT42 is posing as a friend to people considered threats to the government, using a raft of different tools to steal relevant info and perform surveillance.
by Elizabeth Montalbano, Contributor, Dark Reading
September 07, 2022
5 MIN READ
Article
