Depthfirst, an AI‑focused cybersecurity startup, announced a $40 million Series A round led by Accel Partners with participation from SV Angel, Mantis VC, and Alt Capital. Founded in October 2024, the company offers its General Security Intelligence platform, an AI‑native suite that scans codebases, protects against credential exposures, and monitors threats to open‑source and third‑party components. The new capital will fund expanded research, engineering, product development, and sales teams. Co‑founder and CEO Qasim Mithani emphasized the need for defenses that keep pace with AI‑driven attacks, while the leadership team brings experience from Databricks, Amazon, Square, and Google DeepMind. Leer más →

Security researcher Dirk-jan Mollema uncovered two serious flaws in Microsoft’s Entra ID identity platform that could have allowed attackers to obtain global administrator rights across cloud tenants. The vulnerabilities involved misuse of Actor Tokens and a validation error in the legacy Azure AD Graph API. Microsoft’s Security Response Center quickly investigated, confirmed no evidence of abuse, and deployed a fix across its cloud ecosystem. The incident highlights risks tied to legacy authentication mechanisms and underscores Microsoft’s push to retire outdated protocols under its Secure Future Initiative. Leer más →

Security researcher Dirk-jan Mollema uncovered two serious flaws in Microsoft’s Entra ID identity platform that could have allowed attackers to obtain global administrator rights across cloud tenants. The vulnerabilities involved misuse of Actor Tokens and a validation error in the legacy Azure AD Graph API. Microsoft’s Security Response Center quickly investigated, confirmed no evidence of abuse, and deployed a fix across its cloud ecosystem. The incident highlights risks tied to legacy authentication mechanisms and underscores Microsoft’s push to retire outdated protocols under its Secure Future Initiative. Leer más →

Security researcher Dirk-jan Mollema uncovered two serious flaws in Microsoft’s Entra ID identity platform that could have allowed attackers to obtain global administrator rights across cloud tenants. The vulnerabilities involved misuse of Actor Tokens and a validation error in the legacy Azure AD Graph API. Microsoft’s Security Response Center quickly investigated, confirmed no evidence of abuse, and deployed a fix across its cloud ecosystem. The incident highlights risks tied to legacy authentication mechanisms and underscores Microsoft’s push to retire outdated protocols under its Secure Future Initiative. Leer más →

Security researcher Dirk-jan Mollema uncovered two serious flaws in Microsoft’s Entra ID identity platform that could have allowed attackers to obtain global administrator rights across cloud tenants. The vulnerabilities involved misuse of Actor Tokens and a validation error in the legacy Azure AD Graph API. Microsoft’s Security Response Center quickly investigated, confirmed no evidence of abuse, and deployed a fix across its cloud ecosystem. The incident highlights risks tied to legacy authentication mechanisms and underscores Microsoft’s push to retire outdated protocols under its Secure Future Initiative. Leer más →

Security researcher Dirk-jan Mollema uncovered two serious flaws in Microsoft’s Entra ID identity platform that could have allowed attackers to obtain global administrator rights across cloud tenants. The vulnerabilities involved misuse of Actor Tokens and a validation error in the legacy Azure AD Graph API. Microsoft’s Security Response Center quickly investigated, confirmed no evidence of abuse, and deployed a fix across its cloud ecosystem. The incident highlights risks tied to legacy authentication mechanisms and underscores Microsoft’s push to retire outdated protocols under its Secure Future Initiative. Leer más →