Tag: authentication

PCI-Compliant Authentication for Retail Enterprises

Mar 2, 2026 2:47 PM

Tags: authentication, data, defense, fraud, PCI, strategy

Retailers, fortify your defenses! Learn how PCI-compliant authentication protects customer data, prevents fraud, and avoids costly penalties. Click for expert strategies! First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/pci-compliant-authentication-for-retail-enterprises/
Enterprise Passwordless Authentication for Retail Brands

Mar 2, 2026 2:47 PM

Tags: authentication, fraud

Retailers face unique authentication challenges impacting revenue, fraud, and customer experience. Learn how passwordless authentication can improve security, reduce friction, and scale for omnichannel. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/enterprise-passwordless-authentication-for-retail-brands/
Innovation without exposure: A CISO’s secure-by-design framework for business outcomes

Mar 2, 2026 1:47 PM

Tags: ai, authentication, awareness, business, chatgpt, cisa, ciso, cloud, control, cyber, cybersecurity, data, detection, firmware, framework, fraud, governance, identity, injection, iot, law, leak, LLM, metric, mitre, network, nist, offense, radius, RedTeam, resilience, risk, risk-management, service, social-engineering, threat, tool, unauthorized, update

A detection engineer owning “detection as code” patterns and test harnessesA threat hunter owning telemetry quality improvements and query optimizationAn incident responder owning tabletop iterations and runbook hardeningA cloud security lead owning guardrailed landing zone enhancementsThe critical constraint is this: every experiment needs an exit plan. Either it becomes a supported capability, or it is…
Building an AI Agent for Adaptive MFA Decisioning

Feb 28, 2026 3:38 PM

Tags: ai, authentication, mfa, risk

Build an AI agent for adaptive MFA decisioning using risk-based authentication, machine learning, and intelligent security automation. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/building-an-ai-agent-for-adaptive-mfa-decisioning/
External Authentication: Exploring WS-Trust for Authentication

Feb 28, 2026 2:36 PM

Tags: authentication, identity, service

Learn how WS-Trust powers external authentication in hybrid identity environments. Explore the Security Token Service (STS) and legacy bridge protocols. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/external-authentication-exploring-ws-trust-for-authentication/
Senate Health Cyber Bill Clears Committee Hurdle

Feb 27, 2026 11:38 PM

Tags: authentication, cyber, cybersecurity, healthcare, law

Bipartisan Bill Would Mandate Multifactor Authentication, Pen Testing. Proposed legislation that’s been kicking around Congress for the last few years that aims to help bolster cybersecurity of the healthcare sector cleared a critical hurdle on Thursday. But will the bill gain enough momentum to pass the full Senate, the House and be signed into law?…
Your personal OpenClaw agent may also be taking orders from malicious websites

Feb 27, 2026 1:37 PM

Tags: access, ai, api, attack, authentication, credentials, identity, malicious, monitoring, radius, software, update, vulnerability

A larger blast radius: Unlike regular software vulnerabilities, compromised AI agents have a bigger blast radius as they hold sensitive API keys, session tokens, file system access, and the authority to execute tasks across enterprise tools.Barr emphasized that autonomous systems “aggregate identity, credentials, and workflow authority,” meaning a failure doesn’t occur quietly. Instead, the agent…
Why application security must start at the load balancer

Feb 27, 2026 1:37 PM

Tags: application-security, attack, authentication, breach, business, compliance, control, credentials, defense, detection, encryption, exploit, finance, guide, healthcare, identity, incident response, infrastructure, Internet, nist, risk, service, technology, threat, tool, waf, zero-trust

Internet traffic hits the load balancerThe load balancer forwards traffic as fast as possibleSecurity happens laterThe problem is simple. If the first system doesn’t enforce trust, everything behind it is already compromised by design. Example 1: Financial services: The team invested heavily in downstream security tools. But the load balancer accepted weak TLS versions and…
How to make LLMs a defensive advantage without creating a new attack surface

Feb 27, 2026 12:37 PM

Tags: access, ai, api, attack, authentication, best-practice, business, control, credentials, cyber, cybersecurity, data, email, exploit, framework, fraud, governance, group, identity, infrastructure, injection, intelligence, international, LLM, login, malware, mitre, nist, phishing, radius, RedTeam, risk, risk-management, scam, spear-phishing, switch, technology, threat, tool, training, unauthorized, update, vulnerability

Alert triage summaries that turn raw telemetry into a short “what happened, why it matters and what I should check next” narrativeInvestigation copilots that generate a timeline from logs, tickets and chat transcripts, then highlight gaps and recommended pivotsDetection engineering assistance for drafting Sigma, YARA or query language snippets that an engineer can review and…
Cisco SD-WAN Zero-Day Actively Exploited to Gain Root Access

Feb 27, 2026 12:37 AM

Tags: access, authentication, cisco, exploit, zero-day

A critical Cisco SD-WAN zero-day has been exploited since 2023 to bypass authentication and gain persistent root access. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/cisco-sd-wan-zero-day-actively-exploited-to-gain-root-access/
The 2026 CISO Mandate: Proactive, Passwordless, and Context-Aware Identity Assurance

Feb 26, 2026 9:36 PM

Tags: authentication, ciso, control, gartner, identity, risk, risk-assessment

<div cla In our opinion, Gartner’s 2026 research reflects this broader evolution. Identity has expanded beyond perimeter controls and point-in-time authentication to encompass verification of the human, contextual risk assessment, and automated trust decisions. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/the-2026-ciso-mandate-proactive-passwordless-and-context-aware-identity-assurance/
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
APT37 Adds New Capabilities for Air-Gapped Networks

Feb 26, 2026 5:37 PM

Tags: access, android, api, attack, authentication, backdoor, cloud, communications, computer, credentials, data, detection, endpoint, google, government, group, Hardware, infection, infrastructure, injection, Internet, malicious, malware, microsoft, monitoring, network, north-korea, powershell, service, social-engineering, threat, tool, update, windows

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign, tracked as Ruby Jumper by ThreatLabz, APT37 uses Windows shortcut (LNK) files to initiate an attack that utilizes a set of newly discovered tools. These tools, RESTLEAF, SNAKEDROPPER, THUMBSBD, and VIRUSTASK,…
Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control

Feb 26, 2026 2:40 PM

Tags: access, authentication, cisco, control, cve, exploit, flaw, hacker, vulnerability, zero-day

Cisco SD-WAN vulnerability CVE-2026-20127 has been exploited since 2023 to gain unauthenticated admin access. A critical Cisco SD-WAN vulnerability, tracked as CVE-2026-20127 (CVSS score of 10.0), has been actively exploited since 2023. The flaw affects Catalyst SD-WAN Controller and Manager and allows remote, unauthenticated attackers to bypass authentication and gain full administrative access by sending…
The Zero-Trust Perimeter: Optimizing OTP Authentication for Modern Identity Security

Feb 26, 2026 12:36 PM

Tags: access, authentication, identity, zero-trust

Learn how to optimize OTP authentication within a zero-trust perimeter to strengthen modern identity security and reduce access risks. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/the-zero-trust-perimeter-optimizing-otp-authentication-for-modern-identity-security/
The farmers and the mercenaries: Rethinking the ‘human layer’ in security

Feb 26, 2026 11:36 AM

Tags: access, attack, authentication, awareness, ciso, control, cybersecurity, defense, detection, intelligence, jobs, monitoring, risk, soc, threat, tool, training

The evidence is already in: This isn’t a theoretical complaint, it shows up in research on how real SOCs work. A study by the University of Oxford based on surveys and interviews with SOC practitioners found they “confirmed the high” false-positive rates of tools in use, and that many “false positives” are actually benign triggers…
5 trends that should top CISO’s RSA 2026 agendas

Feb 26, 2026 9:37 AM

Tags: access, ai, attack, authentication, backup, business, cio, ciso, cloud, conference, control, corporate, cryptography, cyber, cybersecurity, data, defense, detection, edr, finance, framework, governance, group, healthcare, identity, incident response, intelligence, network, okta, resilience, risk, saas, service, skills, software, strategy, tactics, technology, threat, tool, training, update, vulnerability, zero-trust

CTEM in the spotlight: In another evolutionary trend, most organizations are moving beyond scanning for software snafus to continuous threat exposure management (CTEM). By doing so, security teams hope to get a full picture of all assets, as well as their configurations, locations, software vulnerabilities, ownership, and business criticality.Armed with this data, CTEM platforms look…
Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Feb 26, 2026 8:37 AM

Tags: access, authentication, cisco, cve, exploit, flaw, malicious, vulnerability, zero-day

A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly vManage) has come under active exploitation in the wild as part of malicious activity that dates back to 2023.The vulnerability, tracked as CVE-2026-20127 (CVSS score: 10.0), allows an unauthenticated remote attacker to bypass authentication and obtain First…
Critical Cisco SD-WAN 0-Day Exploited for Root Access in Active Cyberattacks

Feb 26, 2026 6:37 AM

Tags: access, authentication, cisco, cvss, cyber, cyberattack, exploit, flaw, network, threat, update, vulnerability, zero-day

Cisco has released urgent updates to patch a critical zero-day vulnerability in its Catalyst SD-WAN products. A highly sophisticated threat actor, known as UAT-8616, is actively exploiting this flaw in the wild to gain deep access to enterprise network edges.”‹ Vulnerability Overview Vulnerability Details Information Vulnerability Cisco Catalyst SD-WAN Controller Authentication Bypass Severity Critical CVSS…
Critical Cisco SD-WAN 0-Day Exploited for Root Access in Active Cyberattacks

Feb 26, 2026 6:37 AM

Tags: access, authentication, cisco, cvss, cyber, cyberattack, exploit, flaw, network, threat, update, vulnerability, zero-day

Cisco has released urgent updates to patch a critical zero-day vulnerability in its Catalyst SD-WAN products. A highly sophisticated threat actor, known as UAT-8616, is actively exploiting this flaw in the wild to gain deep access to enterprise network edges.”‹ Vulnerability Overview Vulnerability Details Information Vulnerability Cisco Catalyst SD-WAN Controller Authentication Bypass Severity Critical CVSS…
Steaelite RAT combines data theft and ransomware management capability in one tool

Feb 26, 2026 5:37 AM

Tags: access, android, attack, authentication, awareness, business, corporate, credentials, crypto, cybercrime, data, ddos, defense, encryption, endpoint, extortion, infection, infosec, malware, mobile, monitoring, password, phishing, ransomware, rat, remote-code-execution, theft, threat, tool, training, windows

CSO that this isn’t the most sophisticated RAT he’s seen. “The novel aspect here,” he said, “is the convergence. Steaelite bundles remote access, credential harvesting, data exfiltration, and ransomware (currently in development) in a single package.” Traditionally, he explained, these capabilities have occupied different parts of the cybercrime toolchain, but Steaelite unifies the functions, giving…
Five Eyes issue emergency directive on exploited Cisco SD-WAN zero-day

Feb 26, 2026 12:36 AM

Tags: access, advisory, authentication, cisa, cisco, cloud, communications, control, cve, endpoint, exploit, firewall, flaw, government, group, guide, identity, infrastructure, malicious, network, office, risk, software, threat, unauthorized, update, vulnerability, zero-day

Software updates available: SD-WAN controllers play a central role in orchestrating traffic across distributed enterprise networks, including branch offices and cloud environments. Compromise at the controller level could provide attackers with broad visibility and control across large portions of an organization’s network infrastructure.In a separate security advisory, Cisco confirmed the vulnerability and released software updates…
Marquis Sues SonicWall Over 2025 Firewall Data Breach

Feb 26, 2026 12:36 AM

Tags: attack, authentication, backup, breach, cloud, credentials, data, data-breach, firewall, flaw, ransomware, software

Lawsuit Claims SonicWall Cloud Backup Flaw Led to Ransomware Attack Against Marquis. Marquis Software Solutions has sued SonicWall alleging a cloud backup data breach exposed firewall configuration files, including credentials and multifactor authentication scratch codes. The firm says the breach enabled an August 2025 ransomware attack and triggered dozens of class action lawsuits. First seen…
CVE-2026-20127: Cisco Catalyst SD-WAN Controller/Manager Zero-Day Authentication Bypass Vulnerability Exploited in the Wild

Feb 25, 2026 10:37 PM

Tags: access, advisory, attack, authentication, cisa, cisco, cve, cyber, cybersecurity, exploit, flaw, government, infrastructure, intelligence, mitigation, network, risk, software, threat, update, vulnerability, zero-day

Exploitation of a maximum severity authentication bypass zero-day vulnerability affecting Cisco Catalyst SD-WAN Controller and Manager has been reported. Immediate patching is recommended to thwart ongoing attacks. Key takeaways: CVE-2026-20127 is an Authentication Bypass Vulnerability affecting Cisco Catalyst SD-WAN Controller and Manager. Patches have been released and no workarounds are currently available. Exploitation in the…
Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

Feb 25, 2026 7:37 PM

Tags: attack, authentication, cisco, cve, exploit, malicious, vulnerability, zero-day

Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was actively exploited in zero-day attacks that allowed remote attackers to compromise controllers and add malicious rogue peers to targeted networks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-cisco-sd-wan-bug-exploited-in-zero-day-attacks-since-2023/
Threat actor leveraged Cisco SD-WAN zero-day since 2023 (CVE-2026-20127)

Feb 25, 2026 6:36 PM

Tags: authentication, cisco, cyber, exploit, threat, vulnerability, zero-day

A >>highly sophisticated<< cyber threat actor has been exploiting a zero-day authentication bypass vulnerability (CVE-2026-20127) in Cisco Catalyst SD-WAN Controller … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/25/cisco-sd-wan-zero-day-cve-2026-20127/
Active exploitation of Cisco Catalyst SD-WAN by UAT-8616

Feb 25, 2026 5:37 PM

Tags: authentication, cisco, cve, exploit, vulnerability

Cisco Talos is tracking the active exploitation of CVE-2026-20127, a vulnerability in Cisco Catalyst SD-WAN Controller, formerly vSmart, that allows an unauthenticated remote attacker to bypass authentication and obtain administrative privileges. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/uat-8616-sd-wan/
The Real Initial Access Vector: Compromised Active Directory Credentials

Feb 25, 2026 4:37 PM

Tags: access, authentication, credentials, exploit

Compromised Active Directory credentials allow attackers to log in without exploits, driving modern authentication-based initial access. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/the-real-initial-access-vector-compromised-active-directory-credentials/
PowerDMARC vs Valimail: An Objective Comparison Guide

Feb 25, 2026 2:37 PM

Tags: authentication, dmarc, email, guide, msp

Compare PowerDMARC and Valimail to find the best email authentication solution for your business. Explore features, usability, pricing, and MSP support to choose the right DMARC platform. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/powerdmarc-vs-valimail-an-objective-comparison-guide/
News alert: Sendmarc highlights impact of DMARC update on evolving email security standards

Feb 24, 2026 8:02 PM

Tags: authentication, dmarc, email, update

WILMINGTON, Del., Feb. 24, 2026, CyberNewswire, Sendmarc has released a new fireside chat featuring Todd Herr, Principal Solutions Architect at GreenArrow Email and co-editor of DMARCbis, on the upcoming update to DMARC (Domain-based Message Authentication, Reporting, and Conformance). Led… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/news-alert-sendmarc-highlights-impact-of-dmarc-update-on-evolving-email-security-standards/