Identity and Access Management | News, how-tos, features, reviews, and videos
The Key Secure Future Initiative's November update includes compulsory MFA, device isolation, and secrets security.
In statements that some labeled vague and confusing, Microsoft further embraced passkeys — and is decidedly not embracing CISOs who don’t want them.
Okta’s AD/LDAP authentication flaw allows an attacker to login without a password.
Microsoft has warned that Midnight Blizzard, linked to Russia’s SVR, employs novel tactics to compromise government and NGO accounts.
Fido Alliance proposes a new standard that makes it possible to use the same passkeys even if you change platform or service.
The new, open-source identity security standard will be adopted by OpenID foundation members including Microsoft, Google, Ping identity and Beyond identity.
A report based on telemetry from Tenable's cloud security customers discovers that 74% have publicly exposed storage or other misconfigurations, opening the door to cyber criminals.
In a consent decree negotiated between the agency and the telco, T-Mobile also promised to more heavily invest in cybersecurity overall.
Fortra has announced what it dubs a Microsoft security hole. There is no dispute that the privilege escalation issue exists, but there is much argument over whether it’s a flaw.
While 90% of organizations believe multifactor authentication is an effective identity security tool, only 5% said it covers every employee and app.