The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Seven Windows authentication paths bypass MFA protections, enabling credential attacks through AD, NTLM, Kerberos, RDP, SMB, and service accounts.
Windows Report

Microsoft Introduces Passkey Authentication for Windows Devices Through Entra

Microsoft introduces passkey support for Microsoft Entra on Windows devices, enabling passwordless sign-in using Windows Hello.
techtimes

Passwordless Authentication: Is Biometric Login & Security Tech Really Safer?

Biometric login revolutionizing passwordless authentication: Is this security tech safer than passwords? Explore benefits, risks, and 2025 trends. Pixabay, Mohamed_hassan Passwordless logins have ...

Why Fallback Channels Are Now Core To Secure Authentication

Fallback channels do not eliminate risk, but they can absorb shocks. They can turn isolated failures into recoverable moments ...
Bleeping Computer

New downgrade attack can bypass FIDO auth in Microsoft Entra ID

Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and ...
Bleeping Computer

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows them to bypass two-factor authentication (2FA) when targeting vulnerable ...
Forbes

Adapting Authentication For Digital Finance: Balancing Security, Compliance And User Experience

In the evolving digital finance landscape, robust authentication is paramount. Modern financial products offer unprecedented digital accessibility, but this convenience exists within a complex ...