Are Your AI Assistants Under Attack?

Many users utilize an AI assistant to handle their inbox, leaving them vulnerable to attack. AI agents are becoming ubiquitous — and, as it turns out, increasingly attractive targets for attackers. In ...
CSO Online

Meet ConsentFix, a new twist on the ClickFix phishing attack

What’s new in a ConsentFix attack is that the attack happens entirely inside a browser, say the researchers, which removes one of the key detection opportunities because the attack doesn’t touch an ...

Death to one-time text codes: Passkeys are the new hotness in MFA

"Phishing-resistant MFA is the gold standard for security," according to Microsoft's threat intel team. "No matter how much ...
The Hacker News

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

Cybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams. "When users ...