Credential abuse stories

UK cyberattacks have surged, prompting calls for revamped security and stricter supplier oversight amid escalating threats and costly breaches.

Blackpoint Cyber and CyberFOX partner to bundle cybersecurity solutions, helping MSPs streamline compliance and enhance threat detection from a single provider.

ManageEngine launches AD360 update with identity risk management and local MFA to help firms prevent breaches and secure unmanaged accounts.

ManageEngine enhances AD360 with risk mapping and local MFA to combat credential abuse and privilege escalation in enterprise identity systems.

AI cloud workloads in Southeast Asia face greater security risks, with 70% showing critical vulnerabilities, warns Tenable's 2025 Cloud Security Risk Report.

A Tenable report reveals 70% of AI cloud workloads on platforms like AWS and Azure have critical vulnerabilities, posing increased security risks.

Marks & Spencer faces a cyberattack disrupting contactless payments and online orders, exposing serious digital security flaws during peak retail season.

Vulnerability exploitation surged 34% in 2025, with edge devices targeted; enterprises must prioritise risk-based vulnerability management to combat rising cyber threats.

CrowdStrike unveils Falcon Privileged Access, enhancing identity security with real-time risk-aware controls to prevent privilege escalation and attacks.

Kaspersky has revealed that 2.3 million bank cards have been leaked on the dark web due to infostealer malware, highlighting the rising cybersecurity threat.

Researchers at SentinelLabs have uncovered an active phishing campaign targeting high-profile X accounts to hijack credentials for cryptocurrency scams.

ReliaQuest's new report reveals credential abuse is rampant, with alerts for compromised accounts reaching 75% of all issues reported in Q3 2024.

Tidal Cyber unveils a study revealing high-risk countries and top offenders for election cyber interference threats in 2024, spotlighting the methods used and potential defences.

Google Cloud's 2024 Threat Horizons Report identifies credential misuse, cryptomining, ransomware, and data theft as the key cloud-related threats, citing the need for stringent defensive strategies.

Identity security giant, Okta, gears up to acquire 2022-born Spera Security, set to boost its identity threat detection capabilities and enrich its customer base with advanced technology.

Delinea Secret Server introduces MFA enforcement at depth to meet increasingly stringent cyber insurance requirements.

The updates include performance boosts for large vaults, advanced search, accessibility and workflow improvements for iOS users.

Most in-house intelligence teams lack the in-country experience and access to quality intelligence necessary for avoiding costly and embarrassing mistakes.

Barracuda Networks has highlighted how cybercriminals leverage HTML as an attack technique in phishing, credential theft, and malware delivery.

The most observed 2022 cyber incident in Australia’s healthcare was suspicious network scan activity and multiple lateral movement model breaches in 2021.