Azure CLI Password Spray Bypasses MFA

Azure CLI Password Spray

An Azure CLI password spray campaign made more than 81 million login attempts against Microsoft accounts over two weeks and successfully compromised 78 accounts across 64 organizations — a meaningful share of which believed multi-factor authentication already protected them. The attackers did not break MFA. They found a legacy authentication path that most Conditional Access…

Read More

Top 5 Cybersecurity News Stories July 03, 2026

Cybersecurity News Stories July 03, 2026

The five stories in this week’s Cybersecurity News Stories July 03, 2026 share a common structural property: in each case, the compromised or weaponised system is one that organisations have quietly reassigned to a category other than “security risk.” Backup keys for encrypted messaging are a recovery mechanism, not an intelligence target — until Russian…

Read More

SimpleHelp CVE-2026-48558 RMM Bypass Exploited

SimpleHelp CVE-2026-48558

A critical SimpleHelp CVE-2026-48558 authentication bypass is letting attackers forge a login token and seize a fully authenticated technician session in the remote monitoring and management (RMM) software thousands of managed service providers use to run client networks. CISA added the flaw to its Known Exploited Vulnerabilities catalog on June 29, and researchers have already…

Read More

Signal Backup Recovery Key Russian intelligence

Signal Backup Recovery Key

Signal Backup Recovery Key Russian intelligence theft is now formally attributed by three governments. The FBI, CISA, and Ukraine’s Security Service (SSU) jointly disclosed on June 26–27, 2026 that FSB-linked UNC5792 and GRU-linked UNC4221 are stealing these keys via fake support SMS messages — granting persistent access to complete message archives even after victims reset…

Read More

NIS2 Compliance in Practice: Lessons from Belgium’s First Year

NIS2 compliance

NIS2 compliance has long felt like an approaching deadline rather than a lived reality for many organisations across Europe. That is beginning to change. As member states move from transposition to enforcement, the directive is shifting from policy language to operational impact — altering reporting practices, governance expectations, and supply chain dynamics. Belgium offers one…

Read More