Identity Security stories

UK SOC spots Monday-morning conditional access failure from Germany, helps reset compromised Microsoft 365 account before attackers can strike.

Anthropic enlists Amazon, Apple and Microsoft in Project Glasswing to use Claude Mythos Preview for hunting vulnerabilities in critical software.

iProov warns iOS injection attacks surged 1,151% in late 2025 as generative AI fuels deepfake impersonation and identity fraud.

Identity failures are now the main way cyber attackers breach firms, with experts warning that non-human credentials are widening the risk.

Microsoft warns that 10 to 15 EvilToken phishing runs are launched daily, compromising hundreds of organisations through OAuth token abuse.

1Kosmos wins Department of War IL4 identity approval, extending its FedRAMP High platform to mission-critical defence workloads and partner access.

Permiso launches SandyClaw sandbox to detonate AI agent skills and expose hidden runtime risks before they reach enterprise systems.

Delinea appoints former Optiv and Skyhigh Security executive Scott Goree as Senior Vice President of Channel and Alliances to boost global partner sales.

Rubrik unveils Google Workspace backup service for enterprises, promising faster recovery from cyber incidents with immutable Gmail and Drive protection.

Attackers abuse trusted tools, remote support software and stolen SSO sessions to breach systems, ReliaQuest says.

Executives at Docusign, BeyondTrust and Saviynt say identity, data sovereignty and tighter access controls are now shaping cloud security priorities.

CrowdStrike and HCLTech deepen cybersecurity tie-up with a service to spot, prioritise and fix threats across cloud, identity and endpoints.

Security teams risk sleepwalking into danger as vendors slap the SaaS label on hosted legacy tools disguised as modern cloud identity.

Entrust joins forces with Chillisoft to bolster ANZ cyber defences, blending identity, education and quantum-ready security expertise.

Australian and New Zealand businesses are being urged to harden cloud defences as experts warn of identity flaws, misconfigurations and AI-fuelled attacks.

Yubico names Poupak Modirassari Enbom as Chief Marketing Officer to help drive demand for phishing-resistant authentication amid rising AI-driven threats.

As AI agents spread through businesses, organisations are being urged to create HR-like oversight to manage access, risk and accountability.

N-able rolls out AI-led SOC detections to flag PowerShell abuse, suspicious DNS traffic and unusual Windows processes across multiple layers.

Tenable unveils Hexa AI for its exposure management platform, promising to automate security tasks across IT, cloud and identity environments.

RSA deepens its Microsoft 365 E7 alliance to secure human and AI identities, rolling out wider passwordless access across complex estates.