Okta Uncovers Custom Phishing Kits Built for Vishing Callers

They can intercept user credentials while providing real-time context that helps attackers convince victims to approve MFA ...

Custom-made 'vishing' kits are attacking SSO accounts across the world

The kits are so good that vishing is growing more popular, but there is a solution.
SecurityWeek

Fortinet Confirms FortiCloud SSO Exploitation Against Patched Devices

The cybersecurity company pointed out that the fresh campaign resembles December 2025 attacks targeting CVE-2025-59718 and CVE-2025-59719, two critical-severity defects impacting the FortiCloud SSO ...

Okta SSO accounts targeted in vishing-based data theft attacks

Okta is warning about custom phishing kits built specifically for voice-based social engineering (vishing) attacks.
TMCnet

CureMD Launches Rural Health Accelerator Package: All-in-One Health IT Platform Meets CMS Rural Health Transformation Program Requirements

CureMD Healthcare today announced the Rural Health Accelerator Package, a comprehensive health information technology platform designed to help rural healthcare providers and state health agencies ...
JD Supra

NYDFS Regulated Entities Face Stronger Cybersecurity Regulations

The New York Department of Financial Services (“NYDFS”) implemented the final phases of amendments to its NYDFS Cybersecurity Regulation (23 ...
CSO Online

ServiceNow BodySnatcher flaw highlights risks of rushed AI integrations

A vulnerability that impacts Now Assist AI Agents and Virtual Agent API applications could be exploited to create backdoor ...

This Intune update isn’t optional — it’s a kill switch for outdated apps

Microsoft is enforcing stricter Intune MAM security requirements, and enterprises that haven’t updated their iOS and Android apps will see them blocked from launching.
IEEE

AuthEZ: A Multifaceted Identity Provider Service using Facial, Voice, and In-App Authentication

Abstract: This research paper introduces an innovative pass-wordless authentication system to address the limitations of traditional username and password methods, often prone to security ...
CSO Online

Top 10 vendors for AI-enabled security — according to CISOs

Weighing innovation, reputation, business value, cost, integration overhead, and peer use, among other criteria, CISOs list ...
Mobile ID World

NordPass Introduces Built-In TOTP Authenticator for Personal Vaults

In NordPass’ description, TOTP generation becomes another vault item, stored and accessed alongside credentials under the same protections as the rest of the vault. The company also emphasizes ...