Microsoft's New Passkey Feature Is Being Used Against You
Attackers are calling Microsoft 365 users and walking them through a fake passkey setup. Here's what the feature does and what to do this week.
Read postWeekly posts on the threats, vulnerabilities, and practical steps that actually matter for small businesses. Researched thoroughly. Written plainly.
Attackers are calling Microsoft 365 users and walking them through a fake passkey setup. Here's what the feature does and what to do this week.
Read postEDR and MDR explained in plain words: what they are, the signs your small business needs them, and the real cost of going without. No jargon.
Read postTwelve Microsoft 365 security settings every small business should have on, written as plain questions you can ask your IT person. No jargon needed.
Read postA new Microsoft 365 phishing toolkit steals login tokens and walks right past MFA. Here's how the attack works and how to stop it.
Read postCISA confirms attackers are exploiting three max-severity Ubiquiti UniFi flaws. If you run this gear, here's what to do today.
Read postStolen passwords are now a search service. Attackers can query for credentials tied to your specific company. Here's how to shut it down.
Read postA critical Copilot flaw let attackers steal email and files with one click. Plus a Cisco zero-day and a WordPress supply-chain attack.
Read postA critical bug in WP Maps Pro lets attackers create admin accounts on WordPress sites with no password. Here's what to do if you run one.
Read postA Palo Alto GlobalProtect VPN flaw is being actively exploited to break into business networks. Here's what's happening and what to do.
Read postBook a free 15-minute consult. No sales pitch from a stranger, just a straight conversation about what your business needs.
Book your free consultOr call (732) 701-7012
Monthly agreements, not multi-year lock-ins · No call centers, ever