Tag: fido

Hardening browser security with zero-trust controls

Dec 5, 2025 6:32 PM

Tags: access, api, authentication, automation, browser, chrome, cisa, cloud, compliance, container, control, corporate, credentials, crowdstrike, data, data-breach, detection, edr, email, encryption, endpoint, exploit, fido, finance, framework, google, governance, group, Hardware, identity, kubernetes, least-privilege, login, malicious, malware, mfa, microsoft, network, nist, okta, passkey, password, phishing, phone, risk, risk-assessment, sap, service, soar, theft, threat, tool, update, wifi, windows, zero-trust

1. Identity-first access control Network proximity is now an inferior trust signal. Only federated, cryptographically verifiable identity tokens issued by centralized enterprise IdPs using OIDC or SAML are permitted as gates to corporate resources. This transition, well-documented by FIDO Alliance and Microsoft research, transfers the very concept of “inside” the organization from the network to…
HYPR and Yubico Deepen Partnership to Secure and Scale Passkey Deployment Through Automated Identity Verification

Nov 10, 2025 6:19 PM

Tags: fido, Hardware, identity, passkey, password
HYPR and Yubico Deepen Partnership to Secure and Scale Passkey Deployment Through Automated Identity Verification

Nov 10, 2025 6:19 PM

Tags: fido, Hardware, identity, passkey, password
Defending digital identity from computer-using agents (CUAs)

Nov 7, 2025 2:20 PM

Tags: access, ai, api, attack, authentication, automation, breach, captcha, cisa, computer, control, corporate, credentials, cybersecurity, data, data-breach, defense, detection, email, exploit, fido, google, identity, infrastructure, login, malicious, malware, nfc, passkey, password, phishing, saas, service, skills, social-engineering, tool, unauthorized, update

Principle of least effort: Our brains seek shortcuts to reduce cognitive load, making password reuse seem rational.Security fatigue: Frequent password changes and complex rules frustrate users, pushing them toward reuse.As a result, users often rotate between 410 core passwords. According to an article by Enzoic, the average person reuses the same password across as many as 14…
Defending digital identity from computer-using agents (CUAs)

Nov 7, 2025 2:20 PM

Tags: access, ai, api, attack, authentication, automation, breach, captcha, cisa, computer, control, corporate, credentials, cybersecurity, data, data-breach, defense, detection, email, exploit, fido, google, identity, infrastructure, login, malicious, malware, nfc, passkey, password, phishing, saas, service, skills, social-engineering, tool, unauthorized, update

Principle of least effort: Our brains seek shortcuts to reduce cognitive load, making password reuse seem rational.Security fatigue: Frequent password changes and complex rules frustrate users, pushing them toward reuse.As a result, users often rotate between 410 core passwords. According to an article by Enzoic, the average person reuses the same password across as many as 14…
Sovereign Data, Sovereign Access: Introducing Modern FIDO Authentication for SAS PCE

Oct 14, 2025 5:24 AM

Tags: access, ai, attack, authentication, business, ceo, ciso, cloud, compliance, container, control, data, encryption, fido, finance, framework, GDPR, iam, identity, infrastructure, law, LLM, mfa, mobile, password, phishing, resilience, risk, service, software, strategy, technology, tool

Sovereign Data, Sovereign Access: Introducing Modern FIDO Authentication for SAS PCE andrew.gertz@t“¦ Mon, 10/13/2025 – 14:53 Discover how Thales empowers enterprises with sovereign access through FIDO authentication in SAS PCE”, ensuring secure, phishing-resistant identity control for hybrid environments. Identity & Access Management Access Control Guido Gerrits – Field Channel Director, EMEA More About This Author…
Cybersecurity Snapshot: CISA Highlights Vulnerability Management Importance in Breach Analysis, as Orgs Are Urged To Patch Cisco Zero-Days

Sep 26, 2025 7:09 PM

Tags: 2fa, access, advisory, api, attack, authentication, breach, business, cisa, cisco, cloud, control, credentials, crime, cve, cyber, cybersecurity, data, defense, endpoint, exploit, fido, finance, firewall, framework, github, grc, guide, identity, incident response, infrastructure, Internet, ISO-27001, kev, law, lessons-learned, malicious, malware, mfa, mitigation, monitoring, network, open-source, phishing, privacy, ransomware, risk, saas, scam, security-incident, service, soc, software, supply-chain, tactics, threat, update, vpn, vulnerability, vulnerability-management, worm, zero-day

CISA’s takeaways of an agency hack include a call for timely vulnerability patching. Plus, Cisco zero-day bugs are under attack, patch now. Meanwhile, the CSA issued a framework for SaaS security. And get the latest on the npm breach, the ransomware attack that disrupted air travel and more! Here are six things you need to…
Recap of Our “Passkeys Pwned” Talk at DEF CON

Sep 19, 2025 10:16 AM

Tags: access, api, attack, authentication, awareness, best-practice, business, crypto, encryption, endpoint, exploit, fido, flaw, identity, injection, login, malicious, malware, mfa, passkey, risk, saas, supply-chain, technology, threat, training, unauthorized, update, vulnerability, xss

What the “Passkeys Pwned” talk is and isn’t about, and what it reveals about the importance of correct implementation of the standard The Passkeys Pwned Talk Summary As outlined in the DEF CON abstract below, the Passkeys Pwned attack highlights a passkey implementation flaw, specifically that of WebAuthn in the registration and authentication process. The Passkey Pwned…
Stop Panicking: The FIDO ‘Bypass’ That Never Actually Bypassed FIDO

Sep 2, 2025 9:20 PM

Tags: cybersecurity, fido, passkey, usa

The cybersecurity world exploded in August 2025 when SquareX dropped a bombshell at Black Hat USA: passkeys were “pwned.” Headlines screamed. Twitter erupted. CTOs panicked. But here’s what actually happened: absolutely nothing changed about FIDO’s security. The Anatomy of a Media Meltdown SquareX’s presentation, “Passkeys Pwned: Turning WebAuthn Against Itself,” sent shockwaves through enterprise security..…
Stop Panicking: The FIDO ‘Bypass’ That Never Actually Bypassed FIDO

Sep 2, 2025 9:20 PM

Tags: cybersecurity, fido, passkey, usa

The cybersecurity world exploded in August 2025 when SquareX dropped a bombshell at Black Hat USA: passkeys were “pwned.” Headlines screamed. Twitter erupted. CTOs panicked. But here’s what actually happened: absolutely nothing changed about FIDO’s security. The Anatomy of a Media Meltdown SquareX’s presentation, “Passkeys Pwned: Turning WebAuthn Against Itself,” sent shockwaves through enterprise security..…
Breaking the Passkey Promise: SquareX Discloses Major Passkey Vulnerability at DEF CON 33

Aug 28, 2025 5:23 PM

Tags: authentication, cyber, fido, Hardware, passkey, password, phishing, vulnerability

It is no secret that passwords are highly susceptible to phishing and brute force attacks. This led to the mass adoption of passkeys, a passwordless authentication method leveraging cryptographic key pairs that allows users to log in with biometrics or a hardware key. According to FIDO, over 15 billion accounts have been passkey-enabled, with 69%…
Downgrade Attack Allows Phishing Kits to Bypass FIDO

Aug 17, 2025 9:54 PM

Tags: attack, fido, phishing

You probably can’t break FIDO authentication. Still, researchers have shown that there are ways to get around it. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/downgrade-attack-phishing-kits-bypass-fido
OAuth-Apps für M365-Phishing missbraucht

Aug 4, 2025 7:28 PM

Tags: access, adobe, authentication, business, captcha, cloud, cyberattack, fido, identity, login, mail, malware, mfa, microsoft, password, phishing

Gefälschte OAuth-Apps eröffnen Angreifern neue Wege, um Microsoft-Konten zu kapern.Bedrohungsakteure haben einen neuen, smarten Weg aufgetan, Microsoft-365-Konten zu kompromittieren. Wie Proofpoint herausgefunden hat, erstellen sie dazu zunehmend gefälschte OAuth-Anwendungen, die vertrauenswürdige Brands wie SharePoint und DocuSign imitieren. Die “Originale” dieser Apps nutzen die Identity-Plattform von Microsoft (Azure AD / Entra ID), um auf Daten aus…
Cybercrooks faked Microsoft OAuth apps for MFA phishing

Aug 1, 2025 2:28 PM

Tags: access, authentication, business, cloud, data, detection, email, fido, malicious, mfa, microsoft, phishing, risk, software, threat, unauthorized, update

Microsoft moves to curb the threat: Thousands of malicious messages have been sent from compromised business accounts, as part of the campaign, each impersonating well-known companies. Some lures asked for benign-looking permissions such as “view your profile” and “maintain access to data you have given it access to”.Proofpoint said it reported the observed apps to…
PoisonSeed Attack Turns Out to Be Not a FIDO Bypass After All

Jul 26, 2025 2:27 PM

Tags: attack, credentials, cybersecurity, fido, phishing, update

Cybersecurity firm Expel, in an update shared on July 25, 2025, said it’s retracting its findings about a phishing attack that it said leveraged cross-device sign-in to get around FIDO account protections despite being not in physical proximity to the authenticating client device.”The evidence does show the targeted user’s credentials (username and password) being phished…
‘PoisonSeed’ FIDO Attack Turns Out to Be a Red Herring

Jul 26, 2025 12:27 AM

Tags: attack, fido

Expel retracted its PoisonSeed research, in which it said attackers could circumvent FIDO security keys, and apologized for any misunderstanding. First seen on darkreading.com Jump to article: www.darkreading.com/remote-workforce/poisonseed-attacker-fido-keys
PoisonSeed überlistet FIDO-Schlüssel

Jul 22, 2025 1:40 PM

Tags: authentication, ceo, crypto, cyberattack, encryption, fido, mfa, okta, password, phishing, qr, social-engineering, vulnerability

Cyberkriminelle nutzen die geräteübergreifende Anmeldeoption von FIDO aus, um eine von ihnen kontrollierte authentifizierte Sitzung zu erstellen.FIDO-Schlüssel verwenden eine hardwarebasierte Multi-Faktor-Authentifizierung, um Schwachstellen anderer MFA-Methoden zu beheben. Der berüchtigten Krypto-Hackergruppe PoisonSeed ist es jedoch offenbar gelungen, diese zusätzliche Sicherung zu umgehen. Forscher von Expel sind auf eine Angriffskampagne der Gruppe gestoßen, bei der FIDO mit…
PoisonSeed outsmarts FIDO keys without touching them

Jul 21, 2025 2:41 PM

Tags: attack, authentication, ceo, cryptography, exploit, fido, Hardware, login, phishing, vulnerability

FIDO isn’t broken, just outsmarted: Expel researchers called the campaign a concerning development, given that FIDO keys are often regarded as one of the pinnacles of secure MFA. “While we haven’t uncovered a vulnerability in FIDO keys, IT and SecOps folks will want to sit up and take notice,” they said. “This attack demonstrates how…
PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse

Jul 21, 2025 9:40 AM

Tags: attack, authentication, cybersecurity, fido, hacker, identity, login, phishing, threat

Cybersecurity researchers have disclosed a novel attack technique that allows threat actors to bypass Fast IDentity Online (FIDO) key protections by deceiving users into approving authentication requests from spoofed company login portals.The activity, observed by Expel as part of a phishing campaign in the wild, has been attributed to a threat actor named PoisonSeed, which…
PoisonSeed Attack Tricks Users into Scanning Malicious MFA QR Codes

Jul 21, 2025 8:40 AM

Tags: attack, authentication, cyber, exploit, fido, group, Hardware, malicious, mfa, qr, threat

A sophisticated new cyber attack technique has emerged that exploits the cross-device sign-in features of FIDO keys, effectively bypassing one of the most secure forms of multifactor authentication (MFA) available today. Security researchers have identified this adversary-in-the-middle (AitM) attack, attributed to the PoisonSeed threat group, which demonstrates how attackers can circumvent hardware-based authentication protections through…
Hackers Exploit FIDO MFA With Novel Phishing Technique

Jul 19, 2025 6:40 PM

Tags: authentication, crypto, cybercrime, exploit, fido, group, hacker, login, mfa, phishing, qr, theft, threat

PoisonSeed Threat Actor Uses Cross-Device Login Feature and QR Code to Trick Users. Expel researchers have found a novel adversary-in-the-middle phishing technique used by PoisonSeed, a cybercrime group previously tied to large-scale cryptocurrency thefts, to sidestep one of the most secure forms of multifactor authentication – FIDO2 physical keys. First seen on govinfosecurity.com Jump to…
‘PoisonSeed’ Attacker Skates Around FIDO Keys

Jul 18, 2025 10:40 PM

Tags: attack, authentication, fido, phishing, qr

Researchers discovered a novel phishing attack that serves the victim a QR code as part of supposed multifactor authentication (MFA), in order to get around FIDO-based protections. First seen on darkreading.com Jump to article: www.darkreading.com/remote-workforce/poisonseed-attacker-fido-keys
Phishers have found a way to downgrade”, not bypass”, FIDO MFA

Jul 18, 2025 9:40 PM

Tags: fido, mfa, phishing

Contrary to recent reports, phishing sleight-of-hand doesn’t defeat FIDO. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/07/no-phishers-are-not-bypassing-fido-mfa-at-least-not-yet-heres-why/
PoisonSeed Tricking Users Into Bypassing FIDO Keys With QR Codes

Jul 18, 2025 7:40 PM

Tags: fido, group, login, qr, risk, social-engineering

PoisonSeed group tricks users into bypassing FIDO Keys by misusing QR code logins, highlighting new social engineering risk to secure MFA. First seen on hackread.com Jump to article: hackread.com/poisonseed-trick-users-bypassing-fido-keys-qr-codes/
Why should companies or organizations convert to FIDO security keys?

Jun 25, 2025 7:35 AM

Tags: authentication, fido, threat

In this Help Net Security interview, Alexander Summerer, Head of Authentication at Swissbit, explains how FIDO security keys work, what threats they address, and why they’re … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/25/alexander-summerer-swissbit-fido-security-keys/
OneSpan Acquires Nok Nok Labs to Expand FIDO-Based Passwordless Authentication

Jun 6, 2025 9:54 PM

Tags: authentication, fido

First seen on scworld.com Jump to article: www.scworld.com/news/onespan-acquires-nok-nok-labs-to-expand-fido-based-passwordless-authentication
Void Blizzard nimmt NATO-Organisationen ins Visier

May 30, 2025 12:55 PM

Tags: access, api, authentication, blizzard, cloud, cyberattack, cyberespionage, edr, fido, framework, governance, government, hacker, intelligence, mail, malware, mfa, microsoft, open-source, passkey, password, phishing, risk, siem, spear-phishing, threat, tool, ukraine

Russische Hacker ändern ihre Taktik von Passwort-Spraying zu Phishing, aber ihre Ziele innerhalb der NATO bleiben gleich.Seit über einem Jahr hat es eine neue Cyberspionage-Gruppe, die mit der russischen Regierung in Verbindung stehen soll, auf Unternehmen aus verschiedenen Branchen innerhalb der NATO abgesehen. Die Gruppe wird von Microsoft Threat Intelligence ‘Void Blizzard” genannt. Die niederländischen…
Will AI agent-fueled attacks force CISOs to fast-track passwordless projects?

May 28, 2025 8:54 AM

Tags: access, ai, api, attack, authentication, breach, business, ciso, cloud, credentials, cyber, cybersecurity, data, fido, finance, framework, google, Hardware, identity, login, metric, microsoft, okta, passkey, password, phishing, privacy, risk, risk-management, service, technology, threat, tool, update, zero-trust

Passwordless options: In retiring passwords, security leaders will need to consider their options, passkeys, biometrics, and third-party login services, looking for the best technical, usability, and security fit. There are pros and cons for each option, and in many cases CISOs may be guided towards one based on their existing environment.Passkeys, used by Microsoft, Samsung,…
New Russian APT group Void Blizzard targets NATO-based orgs after infiltrating Dutch police

May 28, 2025 1:55 AM

Tags: access, api, apt, attack, authentication, blizzard, cloud, credentials, data, defense, detection, edr, email, fido, framework, group, hacker, identity, least-privilege, login, mfa, microsoft, open-source, passkey, password, phishing, qr, risk, russia, siem, spear-phishing, switch, threat, tool

Switch to spear phishing: In recent months the group seems to have pivoted from password spraying to targeted spear phishing attacks that direct users to fake Microsoft Entra login pages using adversary-in-the-middle (AitM) techniques. Such a campaign led to the compromise of 20 NGOs in April.In its campaign against NGOs, Void Blizzard sent emails masquerading…
Phishing-Resistant MFA: Why FIDO is Essential

May 8, 2025 11:11 AM

Tags: access, ai, attack, authentication, breach, business, cloud, compliance, credentials, cryptography, cybersecurity, data, data-breach, defense, dora, encryption, exploit, fido, framework, GDPR, Hardware, iam, identity, ISO-27001, malicious, mfa, mobile, network, nist, passkey, password, phishing, phone, ransomware, regulation, risk, service, social-engineering, software, strategy, tactics, technology, theft, threat, tool, unauthorized

Phishing-Resistant MFA: Why FIDO is Essential madhav Thu, 05/08/2025 – 04:47 Phishing attacks are one of the most pervasive and insidious threats, with businesses facing increasingly sophisticated and convincing attacks that exploit human error. Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes. Today’s…