The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Seven Windows authentication paths bypass MFA protections, enabling credential attacks through AD, NTLM, Kerberos, RDP, SMB, and service accounts.

Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws

Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day ...
Security Boulevard

Why Small and Mid-Size Businesses Need CIAM in 2026 (And Why the Cost Objection No Longer ...

In 2026, purpose-built CIAM platforms have made enterprise-grade passwordless authentication accessible to businesses with fewer than 50 employees, at pricing that scales with your monthly active ...
Security Boulevard

Microsoft’s March 2026 Patch Tuesday Addresses 83 CVEs (CVE-2026-21262, CVE-2026-26127)

Critical75Important0Moderate0LowMicrosoft addresses 83 CVEs including two vulnerabilities that were publicly disclosed prior to a patch being released.Microsoft patched 83 CVEs in its March 2026 Patch ...
WeLiveSecurity

Sednit reloaded: Back in the trenches

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

ConnectWise 2026 MSP Threat Report Spotlights How Identity Abuse is Redefining MSP Risk

ConnectWise today announced the release of its 2026 MSP Threat Report, delivering global threat intelligence and actionable guidance for Managed Service Providers (MSPs) navigating one of the most ...
Que.com on MSN

US cybersecurity experts warn of Iran war cyberattack risks

As tensions in the Middle East continue to evolve, U.S. cybersecurity experts are increasingly warning that any escalation ...
Que.com on MSN

From preteen hacker to cyber defender: Stopping corporate attacks

Many cybersecurity professionals begin their careers with an unconventional spark: curiosity. Sometimes that curiosity shows up early—while most kids are ...