Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

NIST updates Digital Identity Guidelines

Public Sector Action
First reported
Last updated
Happening score
H score 18
1 unique sources, 1 articles

Summary

Hide ▲

NIST updated its Digital Identity Guidelines, giving organizations a refreshed federal baseline for identity security as attackers keep abusing IAM, phishing, and deepfakes. The update is the first since 2017 and adds stronger anti-fraud and phishing-resistant authentication guidance. It also points organizations toward FIDO passkeys and other modern authentication options to improve identity assurance.

Related Happenings

FIDO2 hardware-based biometric identity guidance to resist Tycoon 2FA relay phishing

Defensive Guidance
First: 18.11.2025 17:01 Last: 18.11.2025 17:01 Sources 1

About this happening: A new defensive posture centers on **FIDO2 hardware-based biometric identity** to blunt **Tycoon 2FA**-style phishing that relays MFA and steals session cookies. The control matte...

Open Happening

Weak password hygiene and password reuse across FTSE 100 firms

Target Trend
First: 18.11.2025 11:45 Last: 18.11.2025 11:45 Sources 1

About this happening: A **FTSE 100** credential-hygiene snapshot shows **59%** of companies still have at least one employee using **“password”** as a password, raising account-takeover risk across maj...

Open Happening

Timeline

  1. 14.08.2025 22:55 1 articles · 9mo ago

    NIST updates Digital Identity Guidelines

    Initial Disclosure

    NIST updated its Digital Identity Guidelines to add anti-fraud measures, phishing-resistant authentication options such as FIDO passkeys, and updated identity-proofing controls designed to address AI/ML abuse, deepfakes, and synthetic identity risks across identity proofing, enrollment, authentication, management processes, and federation.

    Show sources
    Open in new tab