Identity Security stories

Avatier unveils offline Identity Challenge Card as firms seek fallback access after Stryker hack exposes MFA weaknesses.

Barracuda links surge in device code phishing attacks to EvilTokens kit as criminals exploit Microsoft 365 logins and bypass multifactor checks.

CrowdStrike extends real-time cloud detection to regional Google Cloud infrastructure, aiming to meet sovereignty rules and speed breach response.

Silverfort and SentinelOne team up to secure AI-era identities as machine-speed attacks push identity controls closer to runtime defence.

ServiceNow bolsters cyber security push with Armis buyout, adding real-time asset visibility and deepening its platform after Veza.

Critical Microsoft flaws double as Azure and Dynamics 365 risks surge, BeyondTrust warns organisations to prioritise identity and privilege controls.

Vercel says an attack on a third-party AI tool let hackers hijack a staff Google Workspace account and reach internal systems.

AI models that can hunt and chain software flaws are forcing boards to rethink cyber defences, while scrutiny grows over Anthropic's MCP design risks.

Artemis lands $70 million as investors back AI-driven cyber defence platform for real-time threat detection and response.

Manufacturing was the most targeted sector for ransomware in 2025, as Check Point counted 1,466 attacks worldwide amid rising supply chain exposure.

Tenable adds OT asset discovery to core security tools as Chief Product Officer Eric Doerr says it will expose hidden devices without extra hardware.

Tenable adds OT asset discovery to exposure management platform, helping IT teams spot hidden connected devices and cyber-physical risks.

Ledger names Ian Rogers as Chief Human Agency Officer, putting hardware approval and human oversight at the centre of its AI security push.

WatchGuard and HaloPSA deepen ties to let managed service providers handle security alerts, licensing and billing from one workflow.

Portnox hires Jonathan Skinner as Chief Marketing Officer to drive global growth, with the cybersecurity veteran tasked with sharpening go-to-market strategy.

Machine accounts and AI agents are now eclipsing human users in many IT estates, prompting warnings that outdated identity controls are no longer enough.

AI-driven bots and machine accounts are exposing long-running identity security gaps across Australian and New Zealand organisations, experts warn.

UK SOC spots Monday-morning conditional access failure from Germany, helps reset compromised Microsoft 365 account before attackers can strike.

Anthropic enlists Amazon, Apple and Microsoft in Project Glasswing to use Claude Mythos Preview for hunting vulnerabilities in critical software.

iProov warns iOS injection attacks surged 1,151% in late 2025 as generative AI fuels deepfake impersonation and identity fraud.