Microsoft Entra ID gets passkeys default authentication starting September July 14, 2026 Microsoft has announced that passkeys will become the default authentication method for the Entra ID enterprise identity service starting September
You Don’t Have to Run an Exploit to Know If You’re Vulnerable July 14, 2026 The timeline that vulnerability management was built on has quietly disappeared. For decades, defenders could count on weeks or months
LastPass, Bitwarden users targeted with fake security alerts July 14, 2026 LastPass is warning users about an ongoing phishing campaign that is using fake security notices to direct them to fraudulent
New CrashStealer malware poses as Apple crash reporting tool July 14, 2026 A new macOS information-stealing malware called CrashStealer pretends to be Apple’s crash-reporting tool to steal credentials, keychain data, and crypto
Hackers backdoor Jscrambler npm package with infostealer malware July 14, 2026 The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm package that
Japan’s largest taxi operator shuts systems after cyberattack July 14, 2026 Japan’s largest taxi operator, Nihon Kotsu, announced that its systems were compromised in a cyberattack, forcing the company to shut