Fake Microsoft Entra Passkey Phishing Targets M365 Users
Attackers use voice-based social engineering to trick users into enrolling fake passkeys. This grants unauthorized access to Microsoft 365 accounts for data extortion.
Read moreSecurity insights, vulnerability roundups, and updates from the Agent Breach team.
One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.
Attackers use voice-based social engineering to trick users into enrolling fake passkeys. This grants unauthorized access to Microsoft 365 accounts for data extortion.
Read moreResearch on 281 popular free Android VPNs reveals widespread privacy failures. Many apps leak traffic or transmit data unencrypted.
Read moreA misconfigured server exposed a cybercriminal operation targeting over 1.4 million WordPress sites. Researchers gained rare insight into the tools and methods used for large-scale website compromises.
Read moreLumen Technologies scaled its asset inventory from 17,000 to over 1.1 million items, revealing critical gaps in enterprise visibility. Accurate asset management is foundational for effective cybersecurity programs.
Read moreTwo critical Joomla extensions, iCagenda and Balbooa Forms, are under active exploitation as zero-days. CISA has added these vulnerabilities to its Known Exploited Vulnerabilities catalog.
Read moreA zero-day vulnerability in Alibaba's XQUIC library allows remote attackers to crash HTTP/3 servers with minimal traffic. No patch is currently available.
Read moreA new Rust-based remote access trojan dubbed MODBEACON is being used by the China-linked Silver Fox group. It employs gRPC streaming to encrypt its command-and-control traffic, evading traditional detection methods.
Read moreThree high-severity vulnerabilities in OpenClaw AI assistant could lead to credential theft and remote code execution. These flaws highlight risks in AI-powered personal assistants.
Read moreMultiple advanced persistent threat groups linked to China and India targeted Pakistani law enforcement infrastructure over a two-year campaign. The attacks compromised servers handling sensitive police and citizen data through weaponized web applications.
Read moreThe jscrambler 8.14.0 npm release was compromised to drop a Rust-based infostealer during installation. Security monitoring detected the threat within minutes.
Read more