How a hacking campaign targeted high-profile Gmail and WhatsApp users across the Middle East

The phishing campaign targeted users on WhatsApp, including an Iranian-British activist, and stole the credentials of a ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
Mobile ID World

IDENTT Ships Standalone App to Read NFC Chips in Passports and Identity Cards

The core technical mechanism described is NFC chip reading from government-issued identity documents, including passports and national ID cards. IDENTT says users are prompted to tap the document to ...
winbuzzer.com

Microsoft 365 Phishing Surge: Attackers Weaponize Legitimate Device Code Flow to Bypass MFA

Cybercriminals are launching a widespread wave of phishing attacks that bypass Multi-Factor Authentication (MFA) by exploiting a standard Microsoft 365 feature. Security researchers at Proofpoint warn ...
IEEE

Blockchain-Enabled Distributed Authentication Mechanism for Industrial Device Access

Abstract: The secure access of numerous heterogeneous devices ensures the stability of the industrial Internet of Things. Centralized authentication can be overwhelmed by an influx of authentication ...
talkandroid.com

Simplifying the Search for Your Device Model Code

Editorial Note: Talk Android may contain affiliate links on some articles. If you make a purchase through these links, we will earn a commission at no extra cost to you. Learn more. Discovering your ...
bitnewsbot

Russia-Linked Group Uses Device Code Phishing to Steal M365 Credentials

Since September 2025, a suspected Russia-aligned group known as UNK_AcademicFlare has executed a phishing campaign targeting Microsoft 365 credentials. The campaign mainly impacts entities in ...
Reuters

US FDA approves first at-home device for depression

Dec 11 (Reuters) - The U.S. Food and Drug Administration has approved Flow Neuroscience's at-home brain stimulation device to treat depression, offering an alternative to typical antidepressants that ...
Macworld

Leaked code spills details of mystery Apple smart home accessory

Macworld reports that leaked internal code reveals Apple’s mystery smart home accessory codenamed ‘J229’, expected to launch in spring 2026. The device appears to be a security camera with multiple ...
JD Supra

Updates to AdvaMed Code Coincide With Increased FDA, DOJ Focus on Device Cybersecurity

The Advanced Medical Technology Association (AdvaMed) updated its Code of Ethics effective November 1, 2025, primarily to add a new section on “data-driven technologies,” including the security of ...
GitHub

Sign in to Keycloak with another device using QR codes.

This authentication extension for Keycloak provides an authentication execution enabling users to complete authentication with another device. With QR code authentication, users can quickly and ...
Microsoft

INTERN(al) MSRC variant hunting: From multi-tenant authorization to Model Context Protocol

When security researchers submit a vulnerability report to MSRC, the Vulnerabilities and Mitigations (V&M) team reviews it, reproduces the issue, and determines severity. The team reviews all ...