Digital Identity
-
Hackers exploit trusted Microsoft redirects and ADFS to steal Microsoft 365 logins, researchers say
Researchers describe a phishing campaign that uses legitimate office.com redirects and a misconfigured Microsoft tenant with ADFS to harvest Microsoft 365 credentials, bypassing some security controls. The attack chain begins with a misleading Google ad for “Office 265,” redirects through Office to a phantom domain, and uses conditional access restrictions to conceal the page from…
-
Trump Administration’s New Cybersecurity Executive Order Shifts Focus and Strategies
The Trump administration’s new cybersecurity executive order pivots sharply from past policies, introducing measures that aim to reinforce national security and tackle emerging digital threats while drawing criticism for its political implications and potential efficacy.
-
The Critical Shift Towards Tokenization of Personal Data in Digital Identity Verification
Recent data breaches underscore the pressing need for the tokenization of personal data in digital identity verification. Experts urge a shift towards innovative security measures to protect against rising cyber threats and enhance user privacy.
