Podcasts about passkeys

The expiration of the Cybersecurity Information Sharing Act (CISA) on September 30, 2025, has resulted in a notable decline in U.S. cyber defense capabilities, with a reported drop of over 70% in the sharing of threat indicators. This lapse has created a legal and operational vacuum, leading to increased delays in alert dissemination and a rise in cyber threats, particularly in critical sectors such as healthcare and energy. Federal agencies and private companies are now hesitant to report incidents without the liability protections that CISA previously provided, resulting in a fragmented response to cyber threats.In response to the growing concerns over cybersecurity, the U.S. Congress has included a provision in the federal government shutdown legislation to extend CISA through the end of January 2026. This extension is crucial for facilitating the sharing of threat data between businesses and government agencies. Meanwhile, the Cybersecurity and Resilience Bill introduced in the UK mandates that medium and large IT management and cybersecurity service providers comply with minimum security standards, reflecting a shift towards greater accountability in protecting critical infrastructure.Additionally, Microsoft and 1Password are advancing passwordless technology, with Microsoft enabling the syncing of passkeys across devices and 1Password integrating a new native Passkeys plugin API for Windows 11. These developments aim to enhance user convenience and security, signaling a shift away from traditional password reliance. EasyDMARC has also launched Touchpoint, an AI-driven sales enablement tool for MSPs, while Enable has introduced a cyber warranty program offering financial protection for cyber incidents.For MSPs and IT service leaders, these developments underscore the importance of adapting to evolving cybersecurity regulations and technologies. The expiration of CISA highlights the need for private networks and MSPs to fill the intelligence gap left by government agencies. As compliance requirements tighten in the UK and the U.S., MSPs that can navigate these changes and assist clients in maintaining security and compliance will find significant opportunities in a rapidly changing landscape. Three things to know today00:00 U.S. Cyber Defense Falters as CISA Act Expires, Threat Sharing Plummets 70% Amid Budget Cuts04:35 Compliance Crossroads: New EU, UK, and U.S. Rules Reshape Data Protection and Cybersecurity for MSPs09:42 Vendors Push Simpler, Smarter Security: Microsoft Syncs Passkeys, N-able Adds Cyber Warranty, EasyDMARC Targets MSP Sales This is the Business of Tech.     Supported by:  https://getflexpoint.com/msp-radio/https://cometbackup.com/?utm_source=mspradio&utm_medium=podcast&utm_campaign=sponsorship

Live from Authenticate 2025, Jeff Steadman and Jim McDonald sit down with the Cal Ripken of IDAC, Andrew Shikiar, Executive Director and CEO of the FIDO Alliance. Andrew shares exciting updates on the incredible progress of Passkeys, revealing that over 3 billion are now in use securing accounts. We discuss the key themes of the conference, including the ongoing arms race with AI in security and the critical role of identity verification. Andrew also unveils the new Passkey Index, an initiative to provide industry benchmarks for deployment success. Looking ahead, the conversation shifts to the FIDO Alliance's broadening focus on digital credentials and wallets, aiming to solve the usability and certification challenges that have held the space back. Finally, we hear about the global expansion of the Authenticate conference brand, with a new event launching in Singapore.Connect with Andrew: https://www.linkedin.com/in/andrewshikiar/Learn more about FIDO: https://fidoalliance.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comChapter Timestamps:00:00:00 - Introduction to Authenticate 2025 Themes00:02:50 - Welcoming Andrew Shikiar of the FIDO Alliance00:04:00 - Andrew's Keynote: Passkey Progress and Future Goals00:05:17 - Over 3 Billion Passkeys in Use00:06:57 - Improving the Passkey User Experience (UX)00:09:02 - Introducing the Passkey Index for Benchmarking00:10:46 - The Growth of the Authenticate Conference00:14:55 - FIDO Alliance's New Focus: Digital Credentials and Wallets00:17:25 - Overcoming Hurdles in Digital Credential Adoption00:20:03 - The Role of Major Stakeholders in FIDO's Success00:23:05 - The Future of the Authenticate Conference00:24:00 - Announcing Authenticate APAC in Singapore00:25:07 - Global Differences in Passkey Adoption00:28:19 - Closing Thoughts and FIDO Feud RecapKeywords:Andrew Shikiar, FIDO Alliance, Passkeys, Authenticate 2025, identity verification, digital credentials, digital wallets, passwordless, WebAuthn, user experience, Passkey Index, cybersecurity, authentication, mobile driver's license, multi-factor authentication, IDAC, Identity at the Center, Jeff Steadman, Jim McDonald

Alla shownotes finns på https://www.enlitenpoddomit.se , skulle det se konstigt ut i din poddspelare så titta gärna där efter alla länkar kring det vi pratar om   Avsnitt 547 spelades in den 4 November och därför så handlar dagens avsnitt om: INTRO: - Alla har haft en vecka... David har några pengar kvar, och har den här veckan migrerat från Spotify till Youtube Music, testar ett par hörlurar (återkommer med det nästa vecka), har bytt däck (eller låtit några personer byta åt honom). Björn har sålt en bil. Johan inte sålt nåt den här veckan, men har tillbringat helgen på en innebandy-cup, varit på tonårs-utbildning, har börjat titta på the "Morning show".  FEEDBACK AND BACKLOG: - ffmpeg får 1M sEK   https://news.itsfoss.com/ffmpeg-receives-100k-funding/  - Withings lanserar urinsensor   https://www.withings.com/se/se/u-scan-nutrio  - Forskare på Surrey har kopplat en AI så den ska likna en mänsklig hjärna   https://www.bbc.com/news/articles/c986ddy0myno  - Var krälar ChatGPT Atlas omkring, egentligen?   https://gizmodo.com/chatgpts-browser-bot-seems-to-avoid-new-york-times-links-like-a-rat-who-got-electrocuted-2000680444    - BONUSLÖNK 1: https://gs.statcounter.com/browser-market-share/    - BONUSLÖNK 2: https://www.theverge.com/podcast/801767/zocdoc-ceo-oliver-kharraz-ai-medical-healthcare-doctors  - ChatGPT Go kommer till Sverige   https://swedroid.se/chat-gpt-go-har-slappts-i-sverige/  - UMG och Udio har kommit överens    https://www.reuters.com/business/media-telecom/universal-music-settles-copyright-dispute-with-ai-firm-udio-2025-10-30/  - Google Maps i Android Automotive får lane assist   https://9to5google.com/2025/11/04/google-maps-live-lane-guidance/  - Stäm inte folk som talat sanning    https://news.slashdot.org/story/25/10/31/1715249/10m-people-watched-a-youtuber-shim-a-lock-the-lock-company-sued-him-bad-idea    - BONUSLÖNK: https://www.youtube.com/shorts/YjzlmKz_MM8  LYSSNARFRÅGA: - Från Sofia: vad tror ni är orsaken till att så många tycker det är komplicerat att koppla in sin bärbara dator i en skärm?  Man lär sig ju rätt tidigt att fyrkanten passar i fyrkanten. MICROSOFT - Uppdatera, stäng av eller starta om efter uppdateringar? (också som tips från Ringazin)   https://www.windowslatest.com/2025/11/02/update-and-shut-down-no-longer-restarts-pc-as-windows-11-25h2-patch-addresses-a-decades-old-bug  - Edge får möjlighet att hantera PassKeys   https://www.thurrott.com/cloud/329180/microsoft-edges-password-manager-can-now-save-and-sync-passkeys  - ... Och en Scareware sensor   https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-gets-scareware-sensor-for-faster-scam-detection/  APPLE - Mobil processor i en Dator? Är detta större än Liquid Glass?   https://www.thurrott.com/mobile/mac-and-macos/329232/apple-to-ship-first-a-series-macbook-in-early-2026  - Apple har släppt en ny MacBook Pro med M5-chip   https://www.apple.com/se/macbook-pro  - Apple sänker tillverkningen på iPhone 17 Air   https://www.macrumors.com/2025/10/17/iphone-air-production-to-be-cut-amid-lower-sales/  - Apple låter dig frosta Liquid Glass    https://www.engadget.com/big-tech/ios-ipados-and-macos-now-let-you-frost-apples-liquid-glass-225513425.html  - Siri ska luta sig mot Google Gemini   https://www.macrumors.com/2025/11/02/new-version-of-siri-to-lean-on-google-gemini/  - Apple har återigen sålt för över 100 Miljarder Dollar på ett kvarta….   https://appleinsider.com/articles/25/10/30/apples-has-record-setting-q4-1025b-result-despite-very-small-iphone-revenue-miss  - Men det viktiga för Apple-människor är att aktien INTE gick ner efter att rapporten släpptes   https://appleinsider.com/articles/25/10/30/historical-trend-broken-aapl-makes-big-gains-after-earnings  GOOGLE: - Photos och Maps får nya färgskala   https://9to5google.com/2025/11/02/google-photos-maps-gradient-icon/  - Noting låter användare avinstallera   https://9to5google.com/2025/11/04/nothing-bloatware-apps-uninstall/  - Android 17 kanske får always on läge för appar   https://swedroid.se/android-17-pastas-erbjuda-appar-for-standigt-aktiva-paneler/  - Google "Big Sleep" har hittat buggar i WebKit. Men det viktiga i nyheten är att AI kan göra världen säkrare också…   https://thehackernews.com/2025/11/googles-ai-big-sleep-finds-5-new.html  - Pixel 6, 7, 8, 9 och 10 för tema-paket   https://android.gadgethacks.com/news/google-pixel-gets-game-changing-theme-packs-november-4/  PRYLLISTA - Björn: Om Johan tycker att man ska stoppa ner händerna i toaletten för att byta ut en grej som alla kissar på så att den ska mäta hur man mår… Då tycker jag att han kan köra med en sån här:   https://www.amazon.com/dp/B08LR211FD/?th=1    Sedan så undrar jag varför jag inte har nått att säga till om när det gäller inredning här hemma. ÄLSKAR denna!! https://www.amazon.com/dp/B00KHG0KRK/  - David: En katt, https://www.webhallen.com/se/product/370044-LEGO-Icons-Svartvit-katt-21349  - Johan: https://www.amazon.se/-/en/LEDVANCE-ZigBee-Technology-Adjustable-Bracket/dp/B0BK9JXMCW  EGNA LÄNKAR - En Liten Podd Om IT på webben,      http://enlitenpoddomit.se/  - En Liten Podd Om IT på Facebook,      https://www.facebook.com/EnLitenPoddOmIt/  - En Liten Podd Om IT på Youtube,      https://www.youtube.com/enlitenpoddomit  - Ge oss gärna en recension    - https://podcasts.apple.com/se/podcast/en-liten-podd-om-it/id946204577?mt=2#see-all/reviews      - https://www.podchaser.com/podcasts/en-liten-podd-om-it-158069  LÄNKAR TILL VART MAN HITTAR PODDEN FÖR ATT LYSSNA: - Apple Podcaster (iTunes), https://itunes.apple.com/se/podcast/en-liten-podd-om-it/id946204577  - Overcast, https://overcast.fm/itunes946204577/en-liten-podd-om-it  - Acast, https://www.acast.com/enlitenpoddomit  - Spotify, https://open.spotify.com/show/2e8wX1O4FbD6M2ocJdXBW7?si=HFFErR8YRlKrELsUD--Ujg%20  - Stitcher, https://www.stitcher.com/podcast/the-nerd-herd/en-liten-podd-om-it  - YouTube, https://www.youtube.com/enlitenpoddomit  LÄNK TILL DISCORD DÄR MAN HITTAR LIVE STREAM + CHATT - http://discord.enlitenpoddomit.se  (Och glöm inte att maila bjorn@enlitenpoddomit.se  om du vill ha klistermärken, skicka med en postadress bara. :) 

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

Live from Authenticate 2025, Jeff Steadman and Jim McDonald sit down with Dr. Tina Srivastava, an IDPro board member and co-founder of Badge Inc., for a crucial discussion on the rapidly evolving landscape of identity and authentication.Tina shares her insights on the conference, the evolution from physical hacks to sophisticated AI-driven threats like supercharged phishing, and the current challenges facing the industry. The conversation delves into the complexities of synced Passkeys, the critical vulnerability of account recovery processes, and the slow pace of regulation in keeping up with technology.As a board member for IDPro, Tina highlights the immense value of the practitioner-focused community, the supportive culture within its Slack channels, and makes an exciting announcement about the creation of new member-driven committees to shape the future of the organization. They explore the concept of the "AI arms race" and why identity professionals cannot afford to wait for the next big thing, emphasizing that collaboration and information sharing through communities like IDPro are essential to staying ahead of adversaries.Connect with Tina: https://www.linkedin.com/in/tina-s-8291438a/Find out more about IDPro: https://www.idpro.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comChapters00:00 Introduction and Greetings00:16 Highlights from Authenticate 202501:39 FIDO Feud Rematch Discussion03:17 Guest Introduction: Tina Srivastava03:46 Conference Insights and AI Challenges06:16 Regulatory Environment and Passkeys09:11 Phishing and AI Supercharged Attacks12:28 QR Codes and Accessibility Issues13:09 The Importance of Phishing Resistant Authentication22:24 IDPro Community and Practitioner Support25:18 Community Support and Engagement26:26 IDPro's Role in Identity Events27:48 Future Directions for IDPro29:19 Introducing Committees in IDPro30:39 AI and Identity Verification37:07 The Importance of Information Sharing45:35 Public Speaking and Personal Growth50:58 Conclusion and Final ThoughtsKeywordsIDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Tina Srivastava, IDPro, Authenticate 2025, Passkeys, AI, Artificial Intelligence, Cybersecurity, Phishing, Deepfakes, Authentication, Account Recovery, Biometrics, Identity and Access Management, IAM, NIST, Regulation, Identity Verification, Synced Passkeys, FIDO Alliance

AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen of Threatlocker, and More on this edition of the Security Weekly News. Segment Resources: Ingram Micro Working Through Ransomware Attack by SafePay Group | MSSP Alert: https://www.msspalert.com/news/ingram-micro-working-through-ransomware-attack-by-safepay-group This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-525

AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen of Threatlocker, and More on this edition of the Security Weekly News. Segment Resources: Ingram Micro Working Through Ransomware Attack by SafePay Group | MSSP Alert: https://www.msspalert.com/news/ingram-micro-working-through-ransomware-attack-by-safepay-group This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Show Notes: https://securityweekly.com/swn-525

AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen of Threatlocker, and More on this edition of the Security Weekly News. Segment Resources: Ingram Micro Working Through Ransomware Attack by SafePay Group | MSSP Alert: https://www.msspalert.com/news/ingram-micro-working-through-ransomware-attack-by-safepay-group This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-525

AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen of Threatlocker, and More on this edition of the Security Weekly News. Segment Resources: Ingram Micro Working Through Ransomware Attack by SafePay Group | MSSP Alert: https://www.msspalert.com/news/ingram-micro-working-through-ransomware-attack-by-safepay-group This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Show Notes: https://securityweekly.com/swn-525

This episode is sponsored by HYPR. Visit hypr.com/idac to learn more.In this episode from Authenticate 2025, Jim McDonald and Jeff Steadman are joined by Bojan Simic, Co-Founder and CEO of HYPR, for a sponsored discussion on the evolving landscape of identity and security.Bojan shares his journey from software engineer to cybersecurity leader and dives into the core mission of HYPR: providing fast, consistent, and secure identity controls that complement existing investments. The conversation explores the major themes from the conference, including the push for passkey adoption at scale and the challenge of securely authenticating AI agents.A key focus of the discussion is the concept of "Know Your Employee" (KYE) in a continuous manner, a critical strategy for today's remote and hybrid workforces. Bojan explains how the old paradigm of one-time verification is failing, especially in the face of sophisticated, AI-powered social engineering attacks like those used by Scattered Spider. They discuss the issue of "identity sprawl" across multiple IDPs and why consolidation isn't always the answer. Instead, Bojan advocates for a flexible, best-of-breed approach that provides a consistent authentication experience and leverages existing security tools.Connect with Bojan: https://www.linkedin.com/in/bojansimic/Learn more about HYPR: https://www.hypr.com/idacConnect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at idacpodcast.comChapter Timestamps:00:00 - Introduction at Authenticate 202500:23 - Sponsored Episode Welcome: Bojan Simic, CEO of HYPR01:11 - How Bojan Simic Got into Identity and Cybersecurity02:10 - The Elevator Pitch for HYPR04:03 - The Buzz at Authenticate 2025: Passkeys and Securing AI Agents05:29 - The Trend of Continuous "Know Your Employee" (KYE)07:33 - Is Your MFA Program Enough Anymore?09:44 - Hackers Don't Break In, They Log In: The Scattered Spider Threat11:19 - How AI is Scaling Social Engineering Attacks Globally13:08 - When a Breach Happens, Who's on the Hook? IT, Security, or HR?16:23 - What is the Right Solution for Identity Practitioners?17:05 - The Critical Role of Internal Marketing for Technology Adoption22:27 - The Problem with Identity Sprawl and the Fallacy of IDP Consolidation25:47 - When is it Time to Move On From Your Existing Identity Tools?28:16 - The Role of Document-Based Identity Verification in the Enterprise32:31 - What Makes HYPR's Approach Unique?35:33 - How Do You Measure the Success of an Identity Solution?36:39 - HYPR's Philosophy: Never Leave a User Stranded39:00 - Authentication as a Tier Zero, Always-On Capability40:05 - Is Identity Part of Your Disaster Recovery Plan?41:36 - From the Ring to the C-Suite: Bojan's Past as a Competitive Boxer47:03 - How to Learn More About HYPRKeywords:IDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Bojan Simic, HYPR, Passkeys, Know Your Employee, KYE, Continuous Identity, Identity Verification, Authenticate 2025, Phishing Resistant, Social Engineering, Scattered Spider, AI Security, Identity Sprawl, Passwordless Authentication, FIDO, MFA, IDP Consolidation, Zero Trust, Cybersecurity, IAM, Identity and Access Management, Enterprise Security

October is Cybersecurity Month... What are Passkeys and how are they more secure than passwords to protect your accounts and data online? (at 14:43) --- October is also Menopause Awareness Month... What makes this such a scary topic for so many women to talk about? (at 25:13) --- What's Happening: Meet and mingle with local writers at the 10th annual AuthorFest... among the many events and programs in November at the Findlay-Hancock County Public Library (at 45:38)

☁️ Amazon Web Services (AWS)-Ausfall & die Cloud-Nabelschnur EuropasAm Ende ist es wohl immer DNS. Warum wir so viele Ragebait-Posts gesehen haben, wie Souveränität reflexartig diskutiert wird und was das über unsere Abhängigkeiten aussagt.

How is the transition to passkeys going in 2025?

Social media strategist Scott Kleinberg joins Bob Sirott to explain what passkeys are, how they are different from passwords, and how you can set up passkey for different websites and apps. He also talks about different models of iPhones, reporting spam texts, and updating your tablet.

During his keynote at SecTor 2025, HD Moore, founder and CEO of runZero and widely recognized for creating Metasploit, invites the cybersecurity community to rethink the foundational “rules” we continue to follow—often without question. In conversation with Sean Martin and Marco Ciappelli for ITSPmagazine's on-location event coverage, Moore breaks down where our security doctrines came from, why some became obsolete, and which ones still hold water.One standout example? The rule to “change your passwords every 30 days.” Moore explains how this outdated guidance—rooted in assumptions from the early 2000s when password sharing was rampant—led to predictable patterns and frustrated users. Today, the advice has flipped: focus on strong, unique passwords per service, stored securely via password managers.But this keynote isn't just about passwords. Moore uses this lens to explore how many security “truths” were formed in response to technical limitations or outdated behaviors—things like shared network trust, brittle segmentation, and fragile authentication models. As technology matures, so too should the rules. Enter passkeys, hardware tokens, and enclave-based authentication. These aren't just new tools—they're a fundamental shift in where and how we anchor trust.Moore also calls out an uncomfortable truth: the very products we rely on to protect our systems—firewalls, endpoint managers, and security appliances—are now among the top vectors for breach, per Mandiant's latest report. That revelation struck a chord with conference attendees, who appreciated Moore's willingness to speak plainly about systemic security debt.He also discusses the inescapable vulnerabilities in AI agent flows, likening prompt injection attacks to the early days of cross-site scripting. The tech itself invites risk, he warns, and we'll need new frameworks—not just tweaks to old ones—to manage what comes next.This conversation is a must-listen for anyone questioning whether our security playbooks are still fit for purpose—or simply carried forward by habit.___________GUEST:HD Moore, Founder and CEO of RunZero | On Linkedin: https://www.linkedin.com/in/hdmoore/HOSTS:Sean Martin, Co-Founder, ITSPmagazine and Studio C60 | Website: https://www.seanmartin.comMarco Ciappelli, Co-Founder, ITSPmagazine and Studio C60 | Website: https://www.marcociappelli.comRESOURCES:Keynote: The Once and Future Rules of Cybersecurity: https://www.blackhat.com/sector/2025/briefings/schedule/#keynote-the-once-and-future-rules-of-cybersecurity-49596Learn more and catch more stories from our SecTor 2025 coverage: https://www.itspmagazine.com/cybersecurity-technology-society-events/sector-cybersecurity-conference-toronto-2025Mandiant M-Trends Breach Report: https://cloud.google.com/blog/topics/threat-intelligence/m-trends-2025/OPM Data Breach Summary: https://oversight.house.gov/report/opm-data-breach-government-jeopardized-national-security-generation/Catch all of our event coverage: https://www.itspmagazine.com/technology-and-cybersecurity-conference-coverageWant to share an Event Briefing as part of our event coverage? Learn More

Passkeys promise more security and less hassle, but is syncing them across devices safe? Learn how password managers handle passkeys and what happens if a device is stolen.

During his keynote at SecTor 2025, HD Moore, founder and CEO of runZero and widely recognized for creating Metasploit, invites the cybersecurity community to rethink the foundational “rules” we continue to follow—often without question. In conversation with Sean Martin and Marco Ciappelli for ITSPmagazine's on-location event coverage, Moore breaks down where our security doctrines came from, why some became obsolete, and which ones still hold water.One standout example? The rule to “change your passwords every 30 days.” Moore explains how this outdated guidance—rooted in assumptions from the early 2000s when password sharing was rampant—led to predictable patterns and frustrated users. Today, the advice has flipped: focus on strong, unique passwords per service, stored securely via password managers.But this keynote isn't just about passwords. Moore uses this lens to explore how many security “truths” were formed in response to technical limitations or outdated behaviors—things like shared network trust, brittle segmentation, and fragile authentication models. As technology matures, so too should the rules. Enter passkeys, hardware tokens, and enclave-based authentication. These aren't just new tools—they're a fundamental shift in where and how we anchor trust.Moore also calls out an uncomfortable truth: the very products we rely on to protect our systems—firewalls, endpoint managers, and security appliances—are now among the top vectors for breach, per Mandiant's latest report. That revelation struck a chord with conference attendees, who appreciated Moore's willingness to speak plainly about systemic security debt.He also discusses the inescapable vulnerabilities in AI agent flows, likening prompt injection attacks to the early days of cross-site scripting. The tech itself invites risk, he warns, and we'll need new frameworks—not just tweaks to old ones—to manage what comes next.This conversation is a must-listen for anyone questioning whether our security playbooks are still fit for purpose—or simply carried forward by habit.___________GUEST:HD Moore, Founder and CEO of RunZero | On Linkedin: https://www.linkedin.com/in/hdmoore/HOSTS:Sean Martin, Co-Founder, ITSPmagazine and Studio C60 | Website: https://www.seanmartin.comMarco Ciappelli, Co-Founder, ITSPmagazine and Studio C60 | Website: https://www.marcociappelli.comRESOURCES:Keynote: The Once and Future Rules of Cybersecurity: https://www.blackhat.com/sector/2025/briefings/schedule/#keynote-the-once-and-future-rules-of-cybersecurity-49596Learn more and catch more stories from our SecTor 2025 coverage: https://www.itspmagazine.com/cybersecurity-technology-society-events/sector-cybersecurity-conference-toronto-2025Mandiant M-Trends Breach Report: https://cloud.google.com/blog/topics/threat-intelligence/m-trends-2025/OPM Data Breach Summary: https://oversight.house.gov/report/opm-data-breach-government-jeopardized-national-security-generation/Catch all of our event coverage: https://www.itspmagazine.com/technology-and-cybersecurity-conference-coverageWant to share an Event Briefing as part of our event coverage? Learn More

Wenn man sich an die gängigen Regeln zur Passworterstellung hält, ist man eigentlich auf der wortwörtlich sicheren Seite. Doch es geht tatsächlich noch sicherer - Passkeys reduzieren nämlich Risiken, die auch Accounts mit sicheren Passwörtern immer noch angreifbar machen. In der 51. Folge von Informatik für die moderne Hausfrau geht es um Passkeys. Wir rekapitulieren zunächst, wie eigentlich das Login-Verfahren mit Benutzer*innenname und Passwort funktioniert und welche Risiken es dabei gibt. Wie genau Passkeys funktionieren, die ein Login-Verfahren ganz ohne Passwort ermöglichen, und wofür man dabei Public und Private Key benötigt, besprechen wir ebenso wie die verbleibenden Restrisiken. Mehr über Passkeys erfahrt ihr beim BSI: https://www.bsi.bund.de/DE/Themen/Verbraucherinnen-und-Verbraucher/Informationen-und-Empfehlungen/Cyber-Sicherheitsempfehlungen/Accountschutz/Passkeys/passkeys-anmelden-ohne-passwort_node.html und https://www.bsi.bund.de/DE/Themen/Verbraucherinnen-und-Verbraucher/Informationen-und-Empfehlungen/Cyber-Sicherheitsempfehlungen/Accountschutz/Passkeys/Kryptografie-hinter-Passkey/kryptografie-hinter-passkey_node.html In dieser Folge wird auf zwei weitere Folgen verwiesen: - Folge 7 - Interview: Informationssicherheit und was Expert*innen tun, um Daten zu schützen - Gast: Sandra Mahr (heute: Sandra Heger) - Folge 21 - Interview: Sichere Datenübertragung und wie autoritäre Staaten sie unterwandern (können) - Gast: Alexandra Dirksen Alle Informationen zum Podcast findet ihr auf der zugehörigen Webseite https://www.informatik-hausfrau.de. Zur Kontaktaufnahme schreibt mir gerne eine Mail an mail@informatik-hausfrau.de oder meldet euch über Social Media. Auf Instagram und Bluesky ist der Podcast unter dem Handle @informatikfrau (bzw. @informatikfrau.bsky.social) zu finden.  Wenn euch dieser Podcast gefällt, abonniert ihn doch bitte und hinterlasst eine positive Bewertung oder eine kurze Rezension, um ihm zu mehr Sichtbarkeit zu verhelfen. Rezensionen könnt ihr zum Beispiel bei Apple Podcasts schreiben oder auf panoptikum.social.  Falls ihr den Podcast werbefrei hören möchtet oder die Produktion des Podcasts finanziell unterstützen möchtet, habt ihr die Möglichkeit, dies über die Plattform Steady zu tun. Weitere Informationen dazu sind hier zu finden: https://steadyhq.com/de/informatikfrau Falls ihr mir auf anderem Wege etwas 'in den Hut werfen' möchtet, ist dies (auch ohne Registrierung) über die Plattform Ko-fi möglich: https://ko-fi.com/leaschoenberger Dieser Podcast wird gefördert durch das Kulturbüro der Stadt Dortmund.

Welcome solo and group practice owners! We are Liath Dalton and Evan Dumas, your co-hosts of Group Practice Tech. In our latest episode, we explain what therapists should know about using passkeys in their practice. We discuss: Why we recommend password managers How passkeys differ from passwords Why passkeys are simpler and safer than passwords Which password manager we recommend Where you can use passkeys Things to consider when adopting passkeys Listen here: https://personcenteredtech.com/group/podcast/ For more, visit our website. Resources Article: How Passkeys Work—and How to Use Them PCT Resources Group Practice Care Premium weekly (live & recorded) direct support & consultation service, Group Practice Office Hours -- including monthly session with therapist attorney Eric Ström, JD PhD LMHC + assignable staff HIPAA Security Awareness: Bring Your Own Device training + access to Device Security Center with step-by-step device-specific tutorials & registration forms for securing and documenting all personally owned & practice-provided devices (for *all* team members at no per-person cost) + assignable staff HIPAA Security Awareness: Remote Workspaces training for all team members + access to Remote Workspace Center with step-by-step tutorials & registration forms for securing and documenting Remote Workspaces (for *all* team members at no per-person cost) + more

Joe Kissell wraps up our conversation about Take Control of Tahoe and Mac Basics (2nd Edition) with comments on Apple's growing bundle of system apps, arguing choice is good but overload hurts usability, citing legacy tools like Stickies. He highlights Tahoe's automation boosts—Shortcuts that auto-run on triggers—and new passkey import/export for cross-manager use.  This edition of MacVoices is brought to you by our Patreon supporters. Get access to the MacVoices Slack and MacVoices After Dark by joining in at Patreon.com/macvoices. Show Notes: Chapters: [0:00] Why Apple keeps adding apps [1:26] Choice vs. overload (humor included) [2:17] Stickies as a legacy example [4:07] Constraints reduce cognitive load [5:55] Options you can ignore (Phone, journaling) [7:22] Familiar tools vs. learning new ones [8:29] Tying back to Liquid Glass choices [9:09] Shortcuts: new auto-run triggers [11:24] Passkey import/export and managers [14:07] Where to get the books and pricing [15:36] Premium membership and big discounts [16:40] Large, frequently updated catalog [18:09] High signal-to-noise vs. video [19:42] Lunch plans and wrap-up Links: Take Control of Tahoe by Joe Kissell - Take Control Books Mac Basics by Joe Kissell - Take Control Books Guests: Joe Kissell is the publisher of  Take Control ebooks, as well as the author of over 60 books on a wide variety of tech topics. Keep up with him if you can on his personal site, JoeKissell.com, on Bluesky, and Mastodon. Support:      Become a MacVoices Patron on Patreon      http://patreon.com/macvoices      Enjoy this episode? Make a one-time donation with PayPal Connect:      Web:      http://macvoices.com      Twitter:      http://www.twitter.com/chuckjoiner      http://www.twitter.com/macvoices      Mastodon:      https://mastodon.cloud/@chuckjoiner      Facebook:      http://www.facebook.com/chuck.joiner      MacVoices Page on Facebook:      http://www.facebook.com/macvoices/      MacVoices Group on Facebook:      http://www.facebook.com/groups/macvoice      LinkedIn:      https://www.linkedin.com/in/chuckjoiner/      Instagram:      https://www.instagram.com/chuckjoiner/ Subscribe:      Audio in iTunes      Video in iTunes      Subscribe manually via iTunes or any podcatcher:      Audio: http://www.macvoices.com/rss/macvoicesrss      Video: http://www.macvoices.com/rss/macvoicesvideorss

The panel covers multiple tech updates, starting with another Plex data breach and the importance of password hygiene, passkeys, and MFA. Chuck Joiner, David Ginsburg, Marty Jencuis, Web Bixby, Jim Rea, Eric Bolden, Jeff Gamet, Brian Flanigan-Arthurs, and Norbert Frassa discuss FDA clearance for Apple Watch hypertension detection and its impact on health monitoring. The group reviews the latest Apple Sports app improvements, including CarPlay integration and live updates. The show wraps with analysis of TikTok's uncertain U.S. future and broader concerns over social media algorithms.  Today's MacVoices is supported by Insta360 and their new GO Ultra, the tiny 4K camera that goes everywhere with you. Visit store.Insta360.com and use the code  “MacVoices” for a free set of Sticky Tabs. Show Notes: Chapters: [0:00] Intro and sponsor mention[0:40] Another Plex data breach and password advice[2:38] Passkeys, MFA, and password hygiene humor[3:47] FDA clears Apple Watch hypertension detection[4:49] Health monitoring stories and awareness[6:08] Plex security reminders and MFA[6:33] Apple Sports app update and widgets[8:06] CarPlay integration and live activities[8:54] Score updates, delays, and fan frustrations[11:29] TikTok's uncertain U.S. future[15:30] Algorithm control and political concerns[17:12] Broader social media manipulation discussion[19:57] Privacy, platforms, and user data debates[21:35] Social platforms, cookies, and tracking anecdotes[22:55] Closing notes and support links Links: Another Plex data breach sees company urge users to change their passwordhttps://9to5mac.com/2025/09/09/another-plex-data-breach-sees-company-urge-users-to-change-their-password/ Apple Watch hypertension alerts feature receives FDA clearancehttps://9to5mac.com/2025/09/11/apple-watch-hypertension-alerts-feature-receives-fda-clearance/ Apple Sports app gets widgets for live scores and schedules on your home screenhttps://9to5mac.com/2025/09/16/apple-sports-app-gets-widgets-for-live-scores-and-schedules-on-your-home-screen/ TikTok's U.S. future rests on Trump–Xi meeting this weekhttps://searchengineland.com/tiktok-us-future-trump-xi-462002 Guests: Web Bixby has been in the insurance business for 40 years and has been an Apple user for longer than that.You can catch up with him on Facebook, Twitter, and LinkedIn, but prefers Bluesky. Eric Bolden is into macOS, plants, sci-fi, food, and is a rural internet supporter. You can connect with him on Twitter, by email at embolden@mac.com, on Mastodon at @eabolden@techhub.social, on his blog, Trending At Work, and as co-host on The Vision ProFiles podcast. Brian Flanigan-Arthurs is an educator with a passion for providing results-driven, innovative learning strategies for all students, but particularly those who are at-risk. He is also a tech enthusiast who has a particular affinity for Apple since he first used the Apple IIGS as a student. You can contact Brian on twitter as @brian8944. He also recently opened a Mastodon account at @brian8944@mastodon.cloud. Norbert Frassa is a technology “man about town”. Follow him on Twitter and see what he's up to. Jeff Gamet is a technology blogger, podcaster, author, and public speaker. Previously, he was The Mac Observer's Managing Editor, and the TextExpander Evangelist for Smile. He has presented at Macworld Expo, RSA Conference, several WordCamp events, along with many other conferences. You can find him on several podcasts such as The Mac Show, The Big Show, MacVoices, Mac OS Ken, This Week in iOS, and more. Jeff is easy to find on social media as @jgamet on Twitter and Instagram, jeffgamet on LinkedIn., @jgamet@mastodon.social on Mastodon, and on his YouTube Channel at YouTube.com/jgamet. David Ginsburg is the host of the weekly podcast In Touch With iOS where he discusses all things iOS, iPhone, iPad, Apple TV, Apple Watch, and related technologies. He is an IT professional supporting Mac, iOS and Windows users. Visit his YouTube channel at https://youtube.com/daveg65 and find and follow him on Twitter @daveg65 and on Mastodon at @daveg65@mastodon.cloud. Dr. Marty Jencius has been an Associate Professor of Counseling at Kent State University since 2000. He has over 120 publications in books, chapters, journal articles, and others, along with 200 podcasts related to counseling, counselor education, and faculty life. His technology interest led him to develop the counseling profession ‘firsts,' including listservs, a web-based peer-reviewed journal, The Journal of Technology in Counseling, teaching and conferencing in virtual worlds as the founder of Counselor Education in Second Life, and podcast founder/producer of CounselorAudioSource.net and ThePodTalk.net. Currently, he produces a podcast about counseling and life questions, the Circular Firing Squad, and digital video interviews with legacies capturing the history of the counseling field. This is also co-host of The Vision ProFiles podcast. Generally, Marty is chasing the newest tech trends, which explains his interest in A.I. for teaching, research, and productivity. Marty is an active presenter and past president of the NorthEast Ohio Apple Corp (NEOAC). Jim Rea built his own computer from scratch in 1975, started programming in 1977, and has been an independent Mac developer continuously since 1984. He is the founder of ProVUE Development, and the author of Panorama X, ProVUE's ultra fast RAM based database software for the macOS platform. He's been a speaker at MacTech, MacWorld Expo and other industry conferences. Follow Jim at provue.com and via @provuejim@techhub.social on Mastodon. Support:      Become a MacVoices Patron on Patreon     http://patreon.com/macvoices      Enjoy this episode? Make a one-time donation with PayPal Connect:      Web:     http://macvoices.com      Twitter:     http://www.twitter.com/chuckjoiner     http://www.twitter.com/macvoices      Mastodon:     https://mastodon.cloud/@chuckjoiner      Facebook:     http://www.facebook.com/chuck.joiner      MacVoices Page on Facebook:     http://www.facebook.com/macvoices/      MacVoices Group on Facebook:     http://www.facebook.com/groups/macvoice      LinkedIn:     https://www.linkedin.com/in/chuckjoiner/      Instagram:     https://www.instagram.com/chuckjoiner/ Subscribe:      Audio in iTunes     Video in iTunes      Subscribe manually via iTunes or any podcatcher:      Audio: http://www.macvoices.com/rss/macvoicesrss      Video: http://www.macvoices.com/rss/macvoicesvideorss

The panel covers multiple tech updates, starting with another Plex data breach and the importance of password hygiene, passkeys, and MFA. Chuck Joiner, David Ginsburg, Marty Jencuis, Web Bixby, Jim Rea, Eric Bolden, Jeff Gamet, Brian Flanigan-Arthurs, and Norbert Frassa discuss FDA clearance for Apple Watch hypertension detection and its impact on health monitoring. The group reviews the latest Apple Sports app improvements, including CarPlay integration and live updates. The show wraps with analysis of TikTok's uncertain U.S. future and broader concerns over social media algorithms.  http://traffic.libsyn.com/maclevelten/MV25244.mp3 Today's MacVoices is supported by Insta360 and their new GO Ultra, the tiny 4K camera that goes everywhere with you. Visit store.Insta360.com and use the code  “MacVoices” for a free set of Sticky Tabs. Show Notes: Chapters: [0:00] Intro and sponsor mention [0:40] Another Plex data breach and password advice [2:38] Passkeys, MFA, and password hygiene humor [3:47] FDA clears Apple Watch hypertension detection [4:49] Health monitoring stories and awareness [6:08] Plex security reminders and MFA [6:33] Apple Sports app update and widgets [8:06] CarPlay integration and live activities [8:54] Score updates, delays, and fan frustrations [11:29] TikTok's uncertain U.S. future [15:30] Algorithm control and political concerns [17:12] Broader social media manipulation discussion [19:57] Privacy, platforms, and user data debates [21:35] Social platforms, cookies, and tracking anecdotes [22:55] Closing notes and support links Links: Another Plex data breach sees company urge users to change their password https://9to5mac.com/2025/09/09/another-plex-data-breach-sees-company-urge-users-to-change-their-password/ Apple Watch hypertension alerts feature receives FDA clearance https://9to5mac.com/2025/09/11/apple-watch-hypertension-alerts-feature-receives-fda-clearance/ Apple Sports app gets widgets for live scores and schedules on your home screen https://9to5mac.com/2025/09/16/apple-sports-app-gets-widgets-for-live-scores-and-schedules-on-your-home-screen/ TikTok's U.S. future rests on Trump–Xi meeting this week https://searchengineland.com/tiktok-us-future-trump-xi-462002 Guests: Web Bixby has been in the insurance business for 40 years and has been an Apple user for longer than that.You can catch up with him on Facebook, Twitter, and LinkedIn, but prefers Bluesky. Eric Bolden is into macOS, plants, sci-fi, food, and is a rural internet supporter. You can connect with him on Twitter, by email at embolden@mac.com, on Mastodon at @eabolden@techhub.social, on his blog, Trending At Work, and as co-host on The Vision ProFiles podcast. Brian Flanigan-Arthurs is an educator with a passion for providing results-driven, innovative learning strategies for all students, but particularly those who are at-risk. He is also a tech enthusiast who has a particular affinity for Apple since he first used the Apple IIGS as a student. You can contact Brian on twitter as @brian8944. He also recently opened a Mastodon account at @brian8944@mastodon.cloud. Norbert Frassa is a technology “man about town”. Follow him on Twitter and see what he's up to. Jeff Gamet is a technology blogger, podcaster, author, and public speaker. Previously, he was The Mac Observer's Managing Editor, and the TextExpander Evangelist for Smile. He has presented at Macworld Expo, RSA Conference, several WordCamp events, along with many other conferences. You can find him on several podcasts such as The Mac Show, The Big Show, MacVoices, Mac OS Ken, This Week in iOS, and more. Jeff is easy to find on social media as @jgamet on Twitter and Instagram, jeffgamet on LinkedIn., @jgamet@mastodon.social on Mastodon, and on his YouTube Channel at YouTube.com/jgamet. David Ginsburg is the host of the weekly podcast In Touch With iOS where he discusses all things iOS, iPhone, iPad, Apple TV, Apple Watch, and related technologies. He is an IT professional supporting Mac, iOS and Windows users. Visit his YouTube channel at https://youtube.com/daveg65 and find and follow him on Twitter @daveg65 and on Mastodon at @daveg65@mastodon.cloud. Dr. Marty Jencius has been an Associate Professor of Counseling at Kent State University since 2000. He has over 120 publications in books, chapters, journal articles, and others, along with 200 podcasts related to counseling, counselor education, and faculty life. His technology interest led him to develop the counseling profession ‘firsts,' including listservs, a web-based peer-reviewed journal, The Journal of Technology in Counseling, teaching and conferencing in virtual worlds as the founder of Counselor Education in Second Life, and podcast founder/producer of CounselorAudioSource.net and ThePodTalk.net. Currently, he produces a podcast about counseling and life questions, the Circular Firing Squad, and digital video interviews with legacies capturing the history of the counseling field. This is also co-host of The Vision ProFiles podcast. Generally, Marty is chasing the newest tech trends, which explains his interest in A.I. for teaching, research, and productivity. Marty is an active presenter and past president of the NorthEast Ohio Apple Corp (NEOAC). Jim Rea built his own computer from scratch in 1975, started programming in 1977, and has been an independent Mac developer continuously since 1984. He is the founder of ProVUE Development, and the author of Panorama X, ProVUE's ultra fast RAM based database software for the macOS platform. He's been a speaker at MacTech, MacWorld Expo and other industry conferences. Follow Jim at provue.com and via @provuejim@techhub.social on Mastodon. Support:      Become a MacVoices Patron on Patreon      http://patreon.com/macvoices      Enjoy this episode? Make a one-time donation with PayPal Connect:      Web:      http://macvoices.com      Twitter:      http://www.twitter.com/chuckjoiner      http://www.twitter.com/macvoices      Mastodon:      https://mastodon.cloud/@chuckjoiner      Facebook:      http://www.facebook.com/chuck.joiner      MacVoices Page on Facebook:      http://www.facebook.com/macvoices/      MacVoices Group on Facebook:      http://www.facebook.com/groups/macvoice      LinkedIn:      https://www.linkedin.com/in/chuckjoiner/      Instagram:      https://www.instagram.com/chuckjoiner/ Subscribe:      Audio in iTunes      Video in iTunes      Subscribe manually via iTunes or any podcatcher:      Audio: http://www.macvoices.com/rss/macvoicesrss      Video: http://www.macvoices.com/rss/macvoicesvideorss

Jim MacKay reports.

In this episode of the Identity at the Center podcast, Jeff and Jim discuss various aspects of identity access management (IAM) policies and the importance of having a solid foundation. They emphasize the need for automation, controls, and how IAM policies should be created without technology limitations in mind. The discussion also covers the implementation challenges and the evolving concept of identity verification. Jeff, Jim, and their guest, Nishant Kaushik, the new CTO at the FIDO Alliance, also delve into the issues surrounding the adoption of passkeys, highlighted by Rusty Deaton's IDPro article, and address some common concerns about their security. Nishant offers insights into ongoing work at FIDO Alliance, the potential of digital identity, and the importance of community in the identity sector. The episode concludes with mentions of upcoming conferences and an homage to the late identity expert, Andrew Nash.Timestamps00:00 Introduction and Greetings00:18 Importance of IAM Policies01:36 Challenges in Policy Implementation05:09 Conferences and Discount Codes07:59 Introducing the Guest: Nishant Kaushik08:42 The Role of the FIDO Alliance and Digital Identity10:35 Concerns and Solutions for Passkeys22:21 Final Thoughts on Passkeys and Authentication29:48 Credential Security Concerns30:03 FIDO Members and Their Contributions30:38 Getting Involved in Working Groups31:58 Conversations at Authenticate Conference32:29 Evolution of the Authenticate Conference34:32 Automotive Authentication Challenges36:04 Community and Collaboration38:33 Remembering Andrew Nash41:41 Lightning Round: Current State of AI and Identity44:21 Decentralized Identity: Current Trends49:47 Non-Human Identity: Future Perspectives52:19 New York Sports Fandom54:33 Conclusion and Upcoming EventsConnect with Nishant: https://www.linkedin.com/in/nishantkaushik/Learn more about the FIDO Alliance: https://fidoalliance.org/IDPro Article by Rusty Deaton: https://idpro.org/blackhat-and-def-con-2025-thoughts/Kill the Wallet? Rethinking the Metaphors Behind Digital Identity by Heather Flanagan: https://sphericalcowconsulting.com/2025/07/22/digital-wallet-metaphor/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.com

Hosts: Mark Smith, Meg Smith

SummaryIn this episode of the Blue Security Podcast, hosts Andy and Adam delve into the concept of FUD (Fear, Uncertainty, and Doubt) prevalent in the cybersecurity industry. They discuss the implications of sensationalized reporting, particularly around Windows Hello for Business vulnerabilities and the importance of adopting fish resistant multi-factor authentication (MFA). The conversation also covers the security of passkeys, the risks of social engineering, and the need for critical consumption of cybersecurity news to avoid misinformation.----------------------------------------------------YouTube Video Link: https://youtu.be/IauO5oA2BA0----------------------------------------------------Documentation:https://cybersecuritynews.com/windows-hello-for-business-flaw/https://arstechnica.com/security/2025/08/new-research-claiming-passkeys-can-be-stolen-is-pure-nonsense/https://www.inc.com/jason-aten/why-google-is-warning-2-5-billion-gmail-users-to-stop-using-their-password/91234290----------------------------------------------------Contact Us:Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpodYouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠----------------------------------------------------Adam BrewerTwitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewerLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

Passkeys promise safer and easier logins to websites and apps. But if you're wondering what they are or how they work, you're not alone. WSJ contributor Sean Captain will explain. Plus, WSJ reporter Ann-Marie Alcántara will join us to get you up to speed on how tech companies are navigating the new age-verification rules. Julie Chang hosts. Sign up for the WSJ's free Technology newsletter. Learn more about your ad choices. Visit megaphone.fm/adchoices

Podcastfolge zu PSD3 und PSR mit Peter Frey über starke Kundenauthentifizierung - kurz SCA, Passkeys und delegierte Authentifizierung

Windows 11's next big update, 25H2, is finally official—but Microsoft quietly revealed it in a way only Microsoft would. This week, Paul breaks down the hidden gems and impactful privacy, security, and AI features you'll actually care about, with some changes that might just surprise even seasoned Windows users. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Want access to the ad-free video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Apple ha implementado ya en sus nuevos sistemas operativos (iOS 26 y hermanos) la posibilidad de exportar e importar Passkeys. A la espera de que la FIDO Alliance publique el estándar definitivo, la empresa de la manzana se ha basado en el borrador ya publicado para implementar esta funcionalidad.

This is repeat of a broadcast from last October, still relevant, especially in the light of so many current breaches which have begun not with technical weaknesses but with phishing and social engineering.   In this deeper dive episode of 'Cybersecurity Today,' hosts Jim Love and David Shipley, a top cybersecurity expert from Beauceron Security, explore the evolution, intricacies, and impact of phishing attacks. They highlight recent sophisticated phishing strategies that combine AI, complex setups, and psychological manipulation to deceive even the most knowledgeable individuals. The discussion covers various types of phishing including spearphishing, whaling, sharking, QR phishing, and the emotional and psychological tactics employed by attackers. They also delve into practical defense mechanisms such as Multi-Factor Authentication (MFA), passkeys, and the importance of fostering a security-conscious workplace culture. The episode emphasizes the need for a diversified security approach involving technology, training, and emotional intelligence, while encouraging assertiveness in questioning potentially fraudulent communication. 00:00 Introduction to Cybersecurity Today 00:40 The Evolution of Phishing Attacks 01:44 Deep Dive into Phishing Techniques 03:31 History of Phishing 06:04 Types of Phishing: From Email to Whaling 10:06 Advanced Phishing Tactics 19:25 The Psychology Behind Phishing 26:03 Phishing Tactics: Free Gift Card Scams 26:33 The Power of Scarcity in Phishing 28:27 Authority and Phishing: Impersonation Tactics 29:11 Consistency: Small Requests Leading to Big Scams 30:14 Liking and Social Proof in Social Engineering 32:15 The Evolution of Phishing Techniques 35:31 The Role of MFA in Enhancing Security 38:35 Passkeys and the Future of Authentication 44:57 Building a Security-Conscious Workplace Culture 48:47 Conclusion and Final Thoughts

In this episode of Identity at the Center, recorded live from Identiverse 2025 in Las Vegas, Jim McDonald and Jeff Steadman are joined by special guests Diane Vicezar and Arynn Crow. Diane is a recent recipient of the Digital Identity Advancement Foundation's (DIAF) prestigious Kim Cameron Award, and Arynn is the Director of Governance and Transparency for DIAF.Join us for a conversation about breaking into the identity and access management (IAM) industry. Diane shares her journey from a college intern at Microsoft to a full-time employee in the identity space, and what her experience has been like as a first-time attendee at Identiverse. Arynn provides valuable insights into the mission of DIAF, which aims to make professional development in identity more accessible through merit-based awards like the Kim Cameron Award for newcomers and the Victoria O'Connor Award for established professionals.The group discusses the critical question of how the industry can attract new talent. Do people choose a career in identity, or does it choose them? They explore the importance of outreach to universities, the power of social media, and reframing the narrative around identity to focus on its mission-driven impact on society. From career ceilings and the role of AI to favorite conference sessions and hallway conversations, this episode is packed with insights for both seasoned professionals and those just starting their identity journey.Chapter Timestamps00:00:10 - Welcome to Identiverse 202500:02:21 - Introducing Diane Vicezar and Arynn Crow00:03:00 - What is the Digital Identity Advancement Foundation (DIAF)?00:05:33 - Diane's Experience as a Kim Cameron Award Winner00:07:26 - The Legacy of Kim Cameron and Vittorio Bertocci00:10:17 - How Did You Get Into Identity?00:12:08 - How to Attract New Talent to the Identity Industry00:16:51 - Reframing the Conversation Around Identity's Mission00:20:27 - Is There a Career Ceiling in Identity?00:22:34 - Advice for Those Starting Their Career in Identity00:27:10 - The Future of AI in the Identity Industry00:28:32 - Favorite Sessions at Identiverse 202500:34:15 - If You Were a Potato, How Would You Be Prepared?00:36:20 - Closing RemarksConnect with Diana: https://www.linkedin.com/in/dianavicezar/Connect with Arynn: https://www.linkedin.com/in/arynn-crow-821761103/Learn more about the Digital Identity Advancement Foundation: https://digitalidadvancement.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comKeywordsIDAC, Identity at the Center, Jeff Steadman, Jim McDonald, Diane Vicezar, Arynn Crow, Digital Identity Advancement Foundation, DIAF, Kim Cameron Award, Identiverse 2025, Identity and Access Management, IAM, Career in Identity, Cybersecurity, Professional Development, Women in Identity, Identity Industry, Microsoft, AI in Identity, FIDO, Passkeys, Verifiable CredentialsHashtags#idac #Identiverse #DigitalIdentity #IAM #Cybersecurity #CareerDevelopment #WomenInTech #DIAF #KimCameronAward

Can we finally say goodbye to passwords? Dom Bettinelli and Jack Baruzzini unpack how passkeys promise a safer, simpler future—and why resistance still exists. Plus, AI job interviews, NASA on Netflix, and a Navy guy uploads the Catechism The post The End of Passwords? Why Passkeys Are the Future of Online Security appeared first on StarQuest Media.

The monthly Q&A ep is here again, and this time around we field emails and Discord Qs about managing the cognitive load of your hobbies, doing jury duty in a movie theater, site discovery on the indie web, safe ways to repair damaged power cords, websites getting pushy about passkeys, even MORE accurate network time, the high technology of modern sports broadcasting, and more.Link aggregators for the indie web we mentioned include https://rss.joy and https://ooh.directory Support the Pod! Contribute to the Tech Pod Patreon and get access to our booming Discord, a monthly bonus episode, your name in the credits, and other great benefits! You can support the show at: https://patreon.com/techpod

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

China's Salt Typhoon claims another victim (or two). State healthcare portals are tracking and leaking. No kidding. Apple adopts FIDO's Passkeys and other credentials transport. Facebook gets Passkey logon. TikTok continues ticking for at least another 90 days. Canadian telco admits they were infiltrated by Salt Typhoon. Microsoft to remove unwanted (and hopefully unneeded) hardware drivers. The Austrian government legislates court-warranted message decryption. I (Steve) finally get full clarity on what today's "AI" means. A deep dive into the Salt Typhoon's operation and how they got in Show Notes - https://www.grc.com/sn/SN-1031-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow hoxhunt.com/securitynow outsystems.com/twit bigid.com/securitynow zscaler.com/security

Jake and Michael discuss all the latest Laravel releases, tutorials, and happenings in the community.This episode is sponsored by CodeRabbit - cut code review time and bugs in half with AI-driven, contextual feedback.Show linksArr::from() Method in Laravel 12.14 "In Array Keys" Validation Rule Added in Laravel 12.16 Cast Model Properties to a Uri Instance in 12.17 Improved Installation and Frontend Hooks in Laravel Echo 2.1 PHPVerse with Brent Roose Filament Is Now Running Natively on Mobile Laravel Seeder Generator Use Passkeys in Your Laravel App Auto-translate Application Strings with Laratext Deployer Validate Controller Requests with the Laravel Data Package ElasticLens: Eloquent-Powered Elasticsearch for Laravel A Blade-Only Starter Kit for Laravel 12 Projects Prism Relay Efficiently remove expired cache data with Laravel Cache Evict Customize URL Handling with Laravel's Macroable URI Class Streamline API Resources with Laravel's Fluent MethodsFilter Model Attributes with Laravel's New except() Method Simplify Factory Associations with Laravel's UseFactory Attribute Transform JSON into Typed Collections with Laravel's AsCollection::of() Validate URLs Effectively with Laravel's Str::isUrl Method Compare Collection Keys with Laravel's diffKeys Method Verify Nested Relations Efficiently with Laravel's Enhanced relationLoaded Method Enhance Collection Validation with containsOneItem() Closure Support Test Job Failures Precisely with Laravel's assertFailedWith Method Simplify Negative Relation Queries with Laravel's whereDoesntHaveRelation Methods 

Researchers uncover serious vulnerabilities in the Signal fork reportedly used by top government officials. CISA adds a second Commvault flaw to its Known Exploited Vulnerabilities catalog. xAI exposed a private API key on GitHub for nearly two months. FortiGuard uncovers a cyber-espionage campaign targeting critical national infrastructure in the Middle East. Threat brokers advertise a new SS7 zero-day exploit on cybercrime forums. The StealC  info-stealer and malware loader gets an update. Passkeys blaze the trail to a passwordless future. On our Afternoon Cyber Tea segment with Ann Johnson, Ann speaks with Christina Morillo, Head of Information Security at the New York Giants. Cubism meets computing: the Z80 goes full Picasso.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.CyberWire GuestOn our Afternoon Cyber Tea segment with Ann Johnson, Ann speaks with Christina Morillo, Head of Information Security at New York Football Giants, as they discuss how she approaches cybersecurity with curiosity, business alignment, and strong collaboration across the NFL community. Selected Reading The Signal Clone the Trump Admin Uses Was Hacked (404 Media) Critical Commvault Vulnerability in Attacker Crosshairs (SecurityWeek) xAI Dev Leaked API Key on GitHub for Private SpaceX, Tesla & Twitter/X (Cyber Security News) FortiGuard Incident Response Team Detects Intrusion into Middle East Critical National Infrastructure (Fortinet) Hackers Selling SS7 0-Day Vulnerability on Hacker Froums for $5000 (Cyber Security News) StealC malware enhanced with stealth upgrades and data theft tools (Bleeping Computer) Sick of 15-character passwords? Microsoft is going password-less, starting now. (Mashable) Passkeys for Normal People (Troy Hunt) Single-Board Z80 Computer Draws Inspiration From Picasso (Hackaday) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Steganography Challenge Didier published a fun steganography challenge. A solution will be offered on Saturday. https://isc.sans.edu/diary/Steganography+Challenge/31910 Microsoft Makes Passkeys Default Authentication Method Microsoft is now encouraging new users to use Passkeys as the default and only login method, further moving away from passwords https://www.microsoft.com/en-us/security/blog/2025/05/01/pushing-passkeys-forward-microsofts-latest-updates-for-simpler-safer-sign-ins/ Microsoft Authenticator Autofill Changes Microsoft will no longer support the use of Microsoft authenticator as a password safe. Instead, it will move users to the password prefill feature built into Microsoft Edge. This change will start in June and should be completed in August at which point you must have moved your credentials out of Microsoft Authenticator https://support.microsoft.com/en-gb/account-billing/changes-to-microsoft-authenticator-autofill-09fd75df-dc04-4477-9619-811510805ab6 Backdoor found in popular e-commerce components SANSEC identified several backdoored Magento e-commerce components. These backdoors were installed as far back as 2019 but only recently activated, at which point they became known. Affected vendors dispute any compromise at this point. https://sansec.io/research/license-backdoor