Blog

Cybercriminals are evolving their tactics and now targeting even the most phishing-resistant protections like FIDO by deceiving users into downgrading their authentication. Proofpoint’s latest research details how attackers manipulate browser behavior and deploy custom phishing kits to compromise accounts that were once considered secure. Passkey (FIDO2) authentication is a modern, passwordless login method that uses…

Semperis has recently launched EntraGoat, a new open-source tool that configures an intentionally vulnerable simulation environment for Microsoft Entra ID (formerly Azure AD). It’s designed to help security teams safely explore and understand identity-based attacks in a controlled, hands-on lab setting. Modern Entra ID setups often contain hidden risks that can be easily exploited by…

This blog post offers an overview of common ports in modern networks. Whether you’re an IT Pro, a systems administrator, a cybersecurity analyst, or a curious tech enthusiast, understanding these ports is essential for troubleshooting, securing, and optimizing network traffic. I’ll explore key ports, their associated protocols, and practical (application) use cases across web services,…

Microsoft has rolled out Universal Print anywhere (also known as “pull print”) to Microsoft 365 customers worldwide. This new capability lets users send print jobs from any device and securely release them at any available printer. Microsoft 365 Universal Print is a cloud-based printing solution that allows organizations to manage their printing infrastructure through Microsoft…

Microsoft has released the August 2025 Patch Tuesday updates for all supported versions of Windows 11 and Windows 10. This time, the company fixed 107 vulnerabilities in Windows, domain controllers, SharePoint Server, Exchange Server, and other components. Microsoft has now started offering a six-month Extended Security Updates (ESU) program for customers still running Exchange Server…

As credential-based attacks surge to unprecedented levels, now driving more than one in five data breaches, IT leaders are confronting a pivotal moment in cybersecurity strategy. In 2025 alone, leaked credentials spiked by over 160%, with a single breach exposing 16 billion records from tech giants like Google and Facebook. According to new research from…

Microsoft is tackling one of the biggest workplace productivity killers—unexpected device failures. With the limited public preview of Windows 365 Reserve, employees can instantly switch to a secure Cloud PC and continue working when their primary devices are unavailable. Windows 365 Reserve addresses the challenge of maintaining employee productivity during unexpected device outages or disruptions….

While virtually every organization makes sure their servers are backed up, that’s not always the case for endpoints. While some larger organizations have backup products that are capable of protecting desktop PCs and mobile devices like laptops, many smaller and medium sized business do not. I think it’s fair to say that a good percentage…

A newly discovered attack method could allow hackers to crash public Windows domain controllers (DCs) worldwide and weaponize them for massive distributed denial-of-service (DDoS) attacks. SafeBreach researchers have dubbed this technique the “Win-DoS Epidemic,” and warned that it can be carried out without authentication or planting malicious code. Last week, researchers Yair and Shahak Morag…

Microsoft Vice President of Enterprise and OS Security, David Weston, imagines what Windows might look like in 2030—a year he frames as a convergence point for several transformative technologies: His vision is ambitious, but it’s also a clear signal that Microsoft wants customers to upgrade both their software and hardware more frequently. AI as a…

Cyber adversaries are evolving into enterprising operators, blending stealth, speed, and AI-driven tactics to outpace traditional defenses. The CrowdStrike 2025 Threat Hunting Report exposes how these sophisticated actors exploit cloud environments, identities, and generative AI to launch cross-domain attacks. According to CrowdStrike, cybersecurity experts observed a sharp rise in sophisticated attacks, with interactive intrusions increasing…

In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the release of GPT-5 by OpenAI and their early experimentations with the company’s latest flagship AI model.