Infosecurity Magazine

Two-Factor Authentication News

Scroll down for the latest news and information covering two factor authentication.

Latest News and Features

Verizon DBIR: Vulnerability Exploits Overtake Credentials as Top Access Vector

News

Verizon DBIR finds 31% of data breaches began with software flaws last year

PCPJack Campaign Boots TeamPCP Off Compromised Machines

News

SentinelOne believes the PCPJack campaign may be the brainchild of a former TeamPCP member

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

News

Iran-Linked APT Posed as Chaos Ransomware Member in Espionage Campaign

News

One in Eight Workers Has Sold Their Corporate Logins

News

Researchers Track 2.9 Billion Compromised Credentials

News

Surge in Silent Subject Phishing Attacks Targets VIP Users

News

Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool

News

NCSC Outlines Coordinated Plan to Boost NHS Cyber Resilience

News

Passwords are the Weakest Link in a Phishing-First World

Opinion

As traditional network perimeters continue to disappear, modern SaaS environments, remote work, and expanding third-party access have shifted cyber risk away from networks and toward how trust is established and enforced.

White Papers

State of Cybersecurity Report 2022

White Paper

Digital Identity Report

White Paper

The Future of CIAM: 4 Trends Shaping Identity and Access Management

White Paper

Podcasts

  • Exclusive Interview with OpenClaw's Security Advisor
  • Hear from CISA’s Deputy Mission Coordinator for Threat Hunting, Jillian Rucker, and payment security expert, Neira Jones.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
  • Eleanor Dallaway and Camille talk about Camille’s journey from Capitol Hill to Google as global head of product security strategy.

More news and features

Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat

News

Google Warns of New Threat Group Targeting BPOs and Helpdesks

News

Tycoon2FA Phishing Service Resumes Activity Post-Takedown

News

Financial Brands Targeted in Global Mobile Banking Malware Surge

News

Android OS-Level Attack Bypasses Mobile Payment Security

News

Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass

Identity Drift: The Hidden Risk in Hybrid Active Directory Environments

Blog

Identity drift happens when password resets in AD or Entra ID don’t instantly update everywhere. Cached credentials and sync delays can leave old passwords active, creating a short but dangerous window attackers can exploit. Updating cached credentials and enforcing MFA helps close the gap and reduce the risk of compromised identities

What CISOs Should Know (And Do) About OpenClaw

News Feature

Infosecurity spoke to several experts, including OpenClaw’s own security advisor, to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities

Russian Hackers Target WhatsApp and Signal Accounts of Global Military and Government Officials

News

Hybrid Middle East Conflict Triggers Surge in Global Cyber Activity

News

Multifaceted Phishing Scheme Deceives Bitpanda Customers

News

Blogs

How Enterprises are Adapting GRC For a More Complex Risk Environment

Blog

Why Collaboration Friction is the Hidden Driver of Lost Control

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen