Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
The Hacker News

Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms

Mandiant reports ShinyHunters-linked vishing attacks abusing MFA and SSO to breach SaaS apps, steal data, and extort ...
IEEE

Eye-Blink and SSVEP-Based Selective Attention Interface for XR User Authentication: An Explainable Neural Decoding and Machine Learning Approach to Reducing Visual Fatigue

Abstract: The growing demand for secure, immersive authentication in extended reality (XR) environments calls for neural interfaces that are both robust and user-friendly. This study introduces a ...

dbForge 2025.3: AI Assistant in SQL Complete, Expanded Connectivity, and Smarter SQL Workflows

Forge 2025.3 adds AI Assistant to SQL Complete, supports SSMS 22, Visual Studio 2026, MySQL 9.5, MariaDB 12.2, and ...
Dark Reading

Fortinet Confirms New Zero-Day Behind Malicious SSO Logins

To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single ...
SecurityWeek

Fortinet Patches Exploited FortiCloud SSO Authentication Bypass

Fortinet has released patches for CVE-2026-24858, an authentication bypass exploited in the wild to compromise devices.

Google extends Identity Check to your banking apps and password managers

The tech giant has extended Identity Check to all features and apps that use the Android Biometric Prompt. "This means that ...

Malicious Google Chrome extensions hijack accounts

Malicious Chrome extensions steal login data by impersonating Workday, NetSuite and SAP SuccessFactors platforms, cybersecurity researchers say.
Opinion
Database Trends and ApplicationsOpinion

Devart dbForge 2025.3 is Now Available, Brings Smarter SQL Workflows

Devart, a leading developer of database management software, is offering dbForge 2025.3, the latest update to its unified ecosystem of professional database tools-delivering expanded connectivity, ...
IEEE

‘Over Time Everyone’s Gonna Be Open to It’: User Attitudes Toward Security and Privacy in Continuous Authentication for Smart Homes

Abstract: Continuous authentication (CA), a user authentication approach that continuously verifies a person’s identity without requiring explicit input, is increasingly being deployed in smart homes ...