identity Archives

The Canvas breach proved that prevention is no longer enough

Cybercriminals brought down the most widely used learning platform in North America. The Canvas breach is a blueprint for how SaaS attacks now work — and a…

May 18, 2026 By Rishi Kaushal

Nick Polk, branch director for cybersecurity at the Executive Office of the President, said government agencies must pay more attention to identity security in the age of AI. (Image Source: Maggie Callahan/Scoop News Group)

White House cyber official: identity security matters more than ever in the age of AI

While AI tools present unique cybersecurity threats, they still rely on poor identity security by organizations to do the most damage, a White House official said Thursday.

May 14, 2026 By Derek B. Johnson

Everyone’s building AI agents. Almost nobody’s ready for what they do to identity.

Anthropic recently announced that it would not release Mythos, its most powerful AI model, to the public. The model discovered thousands of previously unknown software vulnerabilities —…

Apr 30, 2026 By Devin Lynch

Light reflects off glass panels on Salesforce Tower through the fog in San Francisco on July 31, 2018. (Carlos Avila Gonzalez/The San Francisco Chronicle via Getty Images)

Salesforce issues new security alert tied to third customer attack spree in six months

Researchers said the threat group behind the campaign is associated with ShinyHunters, an outfit that’s previously stolen data from Salesforce instances for extortion attempts.

Mar 11, 2026 By Matt Kapko

The main headquarters of the FBI, the J. Edgar Hoover FBI Building.

FBI says even in an AI-powered world, security basics still matter

AI is speeding up attacks but otherwise not changing their fundamental nature, said FBI official Jason Bilnoski.

Mar 10, 2026 By Tim Starks

Unit 42: Nearly two-thirds of breaches now start with identity abuse

Palo Alto Network’s incident response firm said identity-based attacks are exploding as poor security controls stretch across a widening mosaic of integrated tools and systems.

Feb 17, 2026 By Matt Kapko

The Cisco Systems logo is displayed at the Mobile World Congress (MWC) in Barcelona on February 25, 2019. (GABRIEL BOUYS / AFP)

Cisco network access security platform vulnerabilities under active exploitation

The software defects, which have a maximum-severity rating, do not require authentication and allow remote attackers to execute code arbitrarily on the underlying system.

Jul 23, 2025 By Matt Kapko

Identity lapses ensnared organizations at scale in 2024

Cisco Talos observed identity-based attacks in 60% of the incidents it responded to last year.

Apr 1, 2025 By Matt Kapko

Infostealers fueled cyberattacks and snagged 2.1B credentials last year

Inexpensive information-stealing malware surged in 2024, infecting 23 million hosts, according to Flashpoint.

Mar 18, 2025 By Matt Kapko