Security Boulevard

Wilmington, North America, 24th February 2026, CyberNewswire

The post Sendmarc Releases DMARCbis Fireside Chat Featuring Co-Editor Todd Herr appeared first on Security Boulevard.

The latest shutdown may be temporary, but the damage at CISA is not. Staffing cuts, stalled leadership and political crossfire have hollowed out what was once a bright spot in federal cybersecurity. When institutions built on trust and coordination lose people and mission clarity, the risks extend far beyond Washington.

The post CISA on Life Support appeared first on Security Boulevard.

A fake Zoom meeting page looks real, triggers a bogus “update,” and silently installs surveillance software.

The post Fake Zoom meeting “update” silently installs surveillance software appeared first on Security Boulevard.

Before you can securely sign software or automate code signing in your Windows environment, you will need to configure your credentials for DigiCert® KeyLocker and the Signing Manager Command-Line Tool (SMCTL). Your credentials create a trusted connection between your local signing tools and DigiCert ONE to ensure that only authorized users are able to access… Read More How to Setup Credentials for Windows to Use DigiCert KeyLocker & SMCTL?

The post How to Setup Credentials for Windows to Use DigiCert KeyLocker & SMCTL? appeared first on SignMyCode - Resources.

The post How to Setup Credentials for Windows to Use DigiCert KeyLocker & SMCTL? appeared first on Security Boulevard.

Learn why identity must be built into SaaS architecture from day one to ensure secure authentication, compliance, and scalable growth.

The post Building Secure SaaS Architecture: Why Identity Must Be Designed from Day One appeared first on Security Boulevard.

Discord improves collaboration, but a compromised account can expose credentials, customer data and internal plans. Learn the risks and how to reduce exposure.

The post How Discord Can Expose Corporate Data appeared first on Security Boulevard.

Patching alone no longer stops breaches. Learn why CVE-based vulnerability management is failing and how runtime visibility reveals what’s truly exploitable in your environment.

The post The CVE Treadmill: Why You Can’t Patch Your Way to Security  appeared first on Security Boulevard.

A convincing fake Avast site displays a €499.99 charge and promises a refund. Instead, it harvests your name, address, and full credit card details.

The post Refund scam impersonates Avast to harvest credit card details appeared first on Security Boulevard.

A report published by CrowdStrike today finds the average breakout time for a cyberattack in 2025 has been reduced to 29 minutes, representing a 65% year-over-year reduction. At the same time, CrowdStrike is also reporting there was a 42% increase in the number of zero-day vulnerabilities being exploited prior to public disclosure. Additionally, 82% of..

The post CrowdStrike Analysis Paints Worsening Cybersecurity Picture appeared first on Security Boulevard.

Master Your Passwordless Future: Introducing Thales Authenticator Lifecycle Manager
madhav
Tue, 02/24/2026 - 07:53

The move to passwordless authentication is no longer a distant goal; it's a present-day necessity. Organizations are rapidly adopting FIDO2 authenticators to defend against phishing and strengthen their security posture. While this shift enhances security, it introduces a new challenge: managing thousands of hardware authenticators at scale. How do you handle enrollment, replacement, and revocation without overwhelming your IT team?

Identity & Access Management

Chitwan Arora | Product Manager at Thales
More About This Author >

The move to passwordless authentication is no longer a distant goal; it's a present-day necessity. Organizations are rapidly adopting FIDO2 authenticators to defend against phishing and strengthen their security posture. While this shift enhances security, it introduces a new challenge: managing thousands of hardware authenticators at scale. How do you handle enrollment, replacement, and revocation without overwhelming your IT team?

This is where Thales Authenticator Lifecycle Manager comes in. It's an enterprise-grade Software-as-a-Service built to centralize and streamline the management of your FIDO2 security keys throughout their entire lifecycle. This platform transforms a complex operational burden into a streamlined, secure, and scalable process, empowering your organization to embrace a phishing-resistant future with confidence.

The Challenge of Managing Authenticators at Scale

Organizations face several critical pain points as they transition to passwordless authentication at scale.

• First, deploying and provisioning FIDO keys for thousands of users across multiple locations presents logistical and operational challenges. IT teams must coordinate distribution, enrollment, and configuration, a process that is often fragmented and time-consuming.
• Second, managing the full lifecycle of FIDO keys - including activation, revocation, and replacement - is complicated by a lack of centralized oversight, leading to gaps in security and increased administrative burden.
• Furthermore, limited real-time visibility into the status, usage, and inventory of FIDO keys can impede an organization’s ability to maintain audit readiness and accurately assess its security posture.
• For security teams, a lack of centralized oversight means they cannot easily verify different types of authenticators, do inventory management or produce audit trails for compliance and tracking.

For Managed Service Providers (MSPs), managing authenticators across multiple client environments without a unified platform is a logistical nightmare. The result is increased helpdesk costs, frustrated users, and a slower-than-desired rollout of passwordless initiatives.

A Centralized Solution for Total Control

Thales Authenticator Lifecycle Manager provides a single pane of glass to govern every FIDO2 authenticator across your enterprise. It’s built to solve the core challenges of authenticator management by delivering automation, visibility, and control.

Centralized Dashboard

A centralized dashboard transforms the way organizations manage authenticators at scale, offering IT teams a unified platform to efficiently assign, revoke, and reset authentication devices for users across all departments and locations. With this tool, administrators can complete lifecycle actions in real time, minimizing operational delays and reducing the complexity of provisioning secure access.

On-Behalf FIDO Key Registration

This capability empowers IT administrators to register and assign FIDO keys to users without requiring direct action from the end user, greatly reducing friction during device onboarding. By centralizing registration, assignment, and revocation processes, organizations can efficiently provision authenticators for large teams, ensuring that every user has access to secure, passwordless authentication from day one.

Granular Policy Enforcement

Consistency is key to strong security. The platform enables you to define and apply granular security policies for authenticator usage and user access that persist through the entire authenticator lifecycle. This includes PIN policies, such as defining a minimum PIN length, enforce the user verification during the login or control the list of web services the user can access.

Comprehensive Auditing and Reporting

What you can't see, you can't secure. Thales Authenticator Lifecycle Manager maintains a comprehensive audit trail of every lifecycle management event. This capability is essential for providing concrete evidence that your authenticators are well-managed.

Unlocking Value for Every Stakeholder

Thales Authenticator Lifecycle Manager delivers targeted benefits for all stakeholders, from IT security to end users and Managed service providers

Simplified Users Onboarding / Recovery

This simplified approach accelerates FIDO adoption across the organization.

• With on-behalf registration, users gain secure, passwordless access from day one.
• IT Administrator can centrally unblock FIDO keys after several failed attempts, it reduces the need for users to reset their keys entirely, saving time, and reducing administrative overhead.

Simplified IT Administration

The platform significantly reduces operational complexity.

• On behalf FIDO authenticator registration reduces the number of tickets opened by end users to IT Support
• Intuitive user interface of the platform reduces the number of errors and speeds the administration

By centralizing management, it lowers the total cost of ownership for your passwordless infrastructure.

Increased Security Posture

This solution is a powerful enabler for Zero Trust architecture. By ensuring high-assurance identity assurance through FIDO2, it helps eliminate the primary attack vector for data breaches: compromised credentials. The robust auditing and policy enforcement capabilities provide the visibility and control needed to transform authenticator management from an operational task into a strategic security advantage.

Scalability For Managed Service Providers

For MSPs, scalability and efficiency are paramount. The multi-tenant design allows you to scale your passwordless authentication services across your entire client base without adding proportional administrative overhead. You can deliver consistent, high-value security services, strengthen client relationships, and position your offering as a leader in modern authentication management.

Take Control of Your Passwordless Journey

Implementing phishing-resistant authentication shouldn't create new management headaches. With Thales Authenticator Lifecycle Manager, you can accelerate your adoption of FIDO2, enhance your security posture, and simplify operations all at once. It's time to move beyond spreadsheets and manual workflows and embrace a solution built for the future of enterprise security.

Would you like to learn more about how to accelerate your transition to FIDO authentication? Attend our on demand Webinar

Ready to see how you can manage your authenticator lifecycle? Request for a personalized demo to see the platform in action

studio THALES BLOG Master Your Passwordless Future: Introducing Thales Authenticator Lifecycle Manager

February 24, 2026

The post Master Your Passwordless Future: Introducing Thales Authenticator Lifecycle Manager appeared first on Security Boulevard.

Malicious and risky mobile apps are exposing enterprise data. Learn why mobile-first workplaces need behavior-based app security visibility.

The post The Growing Risk of Malicious Apps in a Mobile-First Workplace appeared first on Security Boulevard.

How Can Organizations Securely Manage Non-Human Identities? Have you ever considered how important it is to manage machine identities within your organization’s cybersecurity framework? Non-Human Identities (NHIs) are becoming increasingly crucial with digital evolves, particularly in industries like financial services, healthcare, and cloud-based services. With the surge in cloud computing, the gap between security teams […]

The post What makes Agentic AI capable in secrets scanning appeared first on Entro.

The post What makes Agentic AI capable in secrets scanning appeared first on Security Boulevard.

Are Current Secrets Vaulting Solutions Meeting Enterprise Expectations? What drives enterprise satisfaction with secrets vaulting systems, and are current solutions living up to the expectations? When organizations increasingly move towards cloud-based environments, managing Non-Human Identities (NHIs) and secrets security becomes a critical component of an effective cybersecurity strategy. NHIs are essentially machine identities, and managing […]

The post Are enterprises satisfied with current secrets vaulting solutions appeared first on Entro.

The post Are enterprises satisfied with current secrets vaulting solutions appeared first on Security Boulevard.

What Is the Role of Agentic AI in Managing Machine Identities? How can organizations enhance their security measures where teeming with sophisticated cybersecurity threats? The answer may be in evolving role of Agentic AI, particularly in managing machine identities. With the rise of cloud technologies and automated systems, machine identities—often seen as Non-Human Identities (NHIs)—play […]

The post Can Agentic AI operate independently in managing machine identities appeared first on Entro.

The post Can Agentic AI operate independently in managing machine identities appeared first on Security Boulevard.

Is Your Organization Prepared for the Surge of Non-Human Identities in Cloud Security? When businesses increasingly shift their operations to the cloud, the complexities of cybersecurity also grow. A little-discussed aspect of this transition is the management of Non-Human Identities (NHIs). These are essentially the machine identities that navigate secure environments, operating through encrypted secrets […]

The post How are cloud security teams supported by Agentic AI appeared first on Entro.

The post How are cloud security teams supported by Agentic AI appeared first on Security Boulevard.

Claude Code Security marks a shift in AI code review.

The post Why Anthropic’s Claude Code Security matters and what it means for Mend.io customers appeared first on Security Boulevard.

OpenClaw is a hot topic at the moment. But what is it and how can you use the 24/7 AI assistant in a safe way?

The post OpenClaw: What is it and can you use it safely? appeared first on Security Boulevard.

Session 13B: API Security

Authors, Creators & Presenters: Miaoqian Lin (Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China; School of Cyber Security, University of Chinese Academy of Sciences, China), Kai Chen (Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China; School of Cyber Security, University of Chinese Academy of Sciences, China), Yi Yang (Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China; School of Cyber Security, University of Chinese Academy of Sciences, China), Jinghua Liu (Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China; School of Cyber Security, University of Chinese Academy of Sciences, China)

PAPER
Uncovering The Iceberg From The Tip: Generating API Specifications For Bug Detection Via Specification Propagation Analysis

Modern software often provides diverse APIs to facilitate development. Certain APIs, when used, can affect variables and require post-handling, such as error checks and resource releases. Developers should adhere to their usage specifications when using these APIs. Failure to do so can cause serious security threats, such as memory corruption and system crashes. Detecting such misuse depends on comprehensive API specifications, as violations of these specifications indicate API misuse. Previous studies have proposed extracting API specifications from various artifacts, including API documentation, usage patterns, and bug patches. However, these artifacts are frequently incomplete or unavailable for many APIs. As a result, the lack of specifications for uncovered APIs causes many false negatives in bug detection. In this paper, we introduce the idea of API Specification Propagation, which suggests that API specifications propagate through hierarchical API call chains. In particular, modern software often adopts a hierarchical API design, where high-level APIs build on low-level ones. When high-level APIs wrap low-level ones, they may inherit the corresponding specifications. Based on this idea, we present APISpecGen, which uses known specifications as seeds and performs bidirectional propagation analysis to generate specifications for new APIs. Specifically, given the seed specifications, APISpecGen infers which APIs the specifications might propagate to or originate from. To further generate specifications for the inferred APIs, APISpecGen combines API usage and validates them using data-flow analysis based on the seed specifications. Besides, APISpecGen iteratively uses the generated specifications as new seeds to cover more APIs. For efficient and accurate analysis, APISpecGen focuses only on code relevant to the specifications, ignoring irrelevant semantics. We implemented APISpecGen and evaluated it for specification generation and API misuse detection. With 6 specifications as seeds, APISpecGen generated 7332 specifications. Most of the generated specifications could not be covered by state-of-the-art work due to the quality of their sources. With the generated specifications, APISpecGen detected 186 new bugs in the Linux kernel, 113 of them have been confirmed by the developers, with 8 CVEs assigned.

ABOUT NDSS
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.

Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS Symposium 2025 Conference content on the Organizations' YouTube Channel.

Permalink

The post NDSS 2025 – Generating API Specifications For Bug Detection Via Specification Propagation Analysis appeared first on Security Boulevard.

Learn how Menlo Security identified a massive Sneaky 2FA phishing campaign using 3.4K domains to bypass Microsoft 365 MFA and steal session cookies.

The post Inside Attacker’s Defensive Funnel: How Sneaky 2FA Cloaks Itself from Security Scanners – Blog | Menlo Security appeared first on Security Boulevard.

via the comic artistry and dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Early Arthropods’ appeared first on Security Boulevard.