Credential abuse stories

Blackpoint Cyber warns attackers are increasingly slipping in through trusted credentials, VPNs and remote tools, with fake CAPTCHA scams leading incidents.

Coalfire's new DivisionHex service hunts shadow AI and rogue agents as most firms report AI-driven security incidents without proper oversight.

Cato launches Dynamic Prevention, a SASE-native engine that auto-detects multi-stage attacks by correlating months of security telemetry.

Cyber criminals are hijacking MSP trust relationships, abusing valid credentials and VPNs as AI turbocharges phishing and ransomware.

CrowdStrike launches FalconID, a “zero-friction” biometric MFA tool that binds logins to trusted devices to counter AI-powered phishing.

Xiid and Cytex join forces to fuse AI governance with zero trust access, targeting shrinking attack paths and stricter cyber regulation.

RapidFort secures USD $42m Series A to scale automated software supply chain security and continuous vulnerability remediation.

Keeper Security has launched a 2026 MSP partner drive around its cloud-native KeeperPAM platform, with new tiers, incentives and training.

Tanium named a Leader in Gartner's first Magic Quadrant for Endpoint Management Tools as demand for AI-driven autonomous IT surges.

CrowdStrike's Falcon platform scores 100% detection and protection with zero false positives in MITRE ATT&CK's toughest cloud-era tests.

CrowdStrike's Falcon platform scores 100% detection and protection with no false positives in MITRE's toughest cross-domain ATT&CK tests yet.

Blackpoint Cyber and CyberFOX partner to bundle cybersecurity solutions, helping MSPs streamline compliance and enhance threat detection from a single provider.

ManageEngine launches AD360 update with identity risk management and local MFA to help firms prevent breaches and secure unmanaged accounts.

ManageEngine enhances AD360 with risk mapping and local MFA to combat credential abuse and privilege escalation in enterprise identity systems.

AI cloud workloads in Southeast Asia face greater security risks, with 70% showing critical vulnerabilities, warns Tenable's 2025 Cloud Security Risk Report.

Vulnerability exploitation surged 34% in 2025, with edge devices targeted; enterprises must prioritise risk-based vulnerability management to combat rising cyber threats.

CrowdStrike unveils Falcon Privileged Access, enhancing identity security with real-time risk-aware controls to prevent privilege escalation and attacks.

Kaspersky has revealed that 2.3 million bank cards have been leaked on the dark web due to infostealer malware, highlighting the rising cybersecurity threat.

Researchers at SentinelLabs have uncovered an active phishing campaign targeting high-profile X accounts to hijack credentials for cryptocurrency scams.

ReliaQuest's new report reveals credential abuse is rampant, with alerts for compromised accounts reaching 75% of all issues reported in Q3 2024.