CITC is back for 2026 and this year I’m talking about how trivial it is to compromise identities and how to prevent it with phishing resistant authentication.
Please see below the video presentation.
Reference article links:
The Register – Lock down Microsoft Intune, feds warn after Stryker attack – https://www.theregister.com/2026/03/19/microsoft_intune_lockdown_stryker/
The Register – 1K+ cloud environments infected following Trivy supply chain attack – https://www.theregister.com/2026/03/24/1k_cloud_environments_infected_following/
Microsoft – What is FIDO2? – https://www.microsoft.com/en-gb/security/business/security-101/what-is-fido2
How Much Is The Phish? Evolving Defences Against Evilginx Reverse Proxy Phishing by Kuba Gretzky – https://www.youtube.com/watch?v=C-Fh4sIdY8c
Images from:
www.token2.com
www.yubico.com
www.apple.com
www.microsoft.com
www.army.mod.uk
Fantastic video / presentation as always! With 365, I’ve implemented Attestion of Passkeys & allowed particular AAGUID’s which I would add 🙂
Cheers Dan! Was a fun presentation to make as well as deliver :).