Identity Automation

Join us at EDUCAUSE’s 2026 Cybersecurity and Privacy Professionals Conference in Anaheim, California!

Information security and privacy leaders from across higher education will come together April 28-30 to address one of today’s toughest challenges: safeguarding identity, data, and access across campus communities.

Identity Automation + Jamf will be sharing how universities like yours are leveraging automation to strengthen cybersecurity maturity, reduce risk, and better protect their students and staff. Be sure to mark your calendars, it’s a session you won’t want to miss.

The Identity Imperative: Why IAM is the Foundation of Cybersecurity Maturity in Higher Education
🗓 Thursday, April 30
⏰ 1:30–2 p.m. PT
📍Pacific Ballroom B (2nd Floor)

Learn more here 👉https://bit.ly/4e744eH

You can also find us at booth #9. Come by to say hello! 👋

🚨 Between March 12–25, 2026, our analysts tracked a significant escalation in phishing sophistication and the headline finding is clear: traditional MFA is no longer a reliable last line of defense.

Threat actors are deploying multi-stage credential harvesting operations that don't just steal passwords; they're engineered to defeat two-factor authentication in real time. The playbook looks like this: capture credentials, show a fake "Incorrect Password" message to bait a second entry attempt, then seamlessly pivot to OTP and authenticator app collection, all within a single, convincing session.

Infrastructure abuse: Microsoft Azure, Cloudflare, and major CDNs are being leveraged to lend credibility and bypass detection, making these campaigns harder than ever to catch with conventional filters.

Organizations still relying solely on standard MFA configurations should treat this as an urgent signal. The threat actors targeting your users have already accounted for it.

Read the full report and learn how PhishID can help protect your organization from these evolving threats. 👇 🔗

https://bit.ly/4ds3g3K?

Phish Wire - March 30, 2026 New phishing attacks use MFA bypass, fake errors, and OTP theft to target major platforms like Microsoft, Google, and Amazon—posing serious security risks.