Bleeping Computer

GitHub warns users to enable 2FA before upcoming deadline

GitHub is warning users that they will soon have limited functionality on the site if they do not enable two-factor authentication (2FA) on their accounts. In emails sent to GitHub users on Christmas ...
HotHardware

Microsoft Makes A Big Security Change Impacting Over 1 Billion Users

We've reported a number of sophisticated cyberattacks where threat actors circumvent 2FA restrictions. In response to the increased vulnerability of passwords, Microsoft has announced a major change ...
SiliconANGLE

Whisper 2FA kit steals Microsoft 365 credentials and MFA tokens in real time

A new report released today by cloud cybersecurity firm Barracuda Networks Inc. details a rapidly evolving phishing-as-a-service kit dubbed Whisper 2FA that’s designed to steal Microsoft 365 ...
Dark Reading

Mamba 2FA Cybercrime Kit Targets Microsoft 365 Users

A phishing-as-a-service (PhaaS) kit dubbed Mamba 2FA is targeting Microsoft 365 users using a variety of convincing adversary-in-the-middle (AitM) disguises. According to the Sekoia Threat Detection & ...
Forbes

Microsoft Warns 1 Billion Windows Users—Do Not Use Password

Update: Republished on March 30 with news of a workaround to new sign-in requirements and more passkey information. All change for Microsoft. The company has suddenly ...
Forbes

Microsoft Issues June 1 Warning — Do Not Wait, Save Your Passwords Now

Microsoft Authenticator to stop saving new passwords June 1. Update, May 4, 2025: This story, originally published May 2, has been updated with further information on the use of passkeys by Microsoft, ...