In recent news, Google have announced the rollout of passkey technology which should eliminate the need for passwords on Google Accounts.  As explained in a previous Digital Paladin post, this should significantly reduce or eliminate cyber risks associated with passwords such as phishing, easily guessed characters, and passwords being reused across multiple websites or apps.

In not so good news, a Microsoft security briefing highlights that fraud losses due to BEC (business email compromise) have continued to grow as threat actors evolve their tactics.  These include techniques to circumvent controls such as impossible traveller alerts.

It’s worth listening to a recent Risky Business podcast which has an interesting interview with Chris Krebs, the former Director of the US Cybersecurity and Infrastructure Security Agency (CISA) on that organisation’s new mandates, China and other topical cyber security issues.