CSO Online

Identity as the primary attack surface: What modern breaches are really exploiting

Hackers aren't breaking through firewalls anymore; they are just logging in with stolen credentials, meaning your identity ...

MFA verifies who logged in. It has no idea what they do next.

What happens after MFA succeeds? How session token theft lets attackers move laterally through enterprise networks without ...

AI Agents Belong In Your Identity Program

But the lesson was real: identity management and agent visibility, sized for the agents we now have, were not where they ...

Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs

Microsoft disrupted Fox Tempest, a malware-signing service accused of abusing Azure certificates to disguise ransomware and ...
Biometric Update

Identity verification becomes core compliance infrastructure across regulated sectors

Identity verification (IDV) has become a must in regulated sectors such as fintech, telecoms, insurance, digital assets, and ...
PE Hub

Carlyle leveraged rising interest in identity security to grow iC Consult before pending sale to Bridgepoint

Thorsten Dippel, the Carlyle Group “With AI, interest in identity security has picked up dramatically,” Thorsten Dippel, a ...
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...
SecurityWeek

Cyber Resilience is the New Business Continuity Plan

The organizations best prepared to face disruption are those that align security, continuity and risk management around what ...
Biometric Update

Building digital ID systems that last: African countries share experiences as ID4Africa 2026 opens

It is critical to ensure that the systems not only facilitate access to important services, but also remain useful to the ...

Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator

Fortinet has released security patches for two critical vulnerabilities in FortiSandbox and FortiAuthenticator that could ...

ISSQUARED® Named a ‘Vendor to Watch’ in IDC MarketScape: Worldwide Certificate Life-Cycle Mgt SW 2026 Vendor Assessment

This follows the successful 2025 launch of PkeyFx, ISSQUARED’s comprehensive suite designed to manage digital identities and cryptographic assets at scale We believe being named a Vendor to Watch in ...

The Hidden Risk In Access Management: How Identity Sprawl Is Undermining Business Security

Access sprawl—not onboarding or offboarding—is the biggest identity security risk. Here's how overprovisioned permissions ...