phishing

2 posts

Microsoft sent you a code you didn't request

An unrequested Microsoft single-use code email is evidence of external interaction with your identity surface. What it proves and what it does not.

May 19, 2026

Article

European Commission AWS Compromise: Identity Boundary Failure Confirmed

Analysis of the European Commission AWS compromise reveals a confirmed failure in identity boundary enforcement. Credential harvesting via phishing led to direct access using valid elevated credentials, exposing systemic gaps in cloud authentication controls.

Apr 13, 2026