Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
US CISA advisory highlights ongoing state-sponsored attacks on routers...
Secure onboarding needed to verify new-hire identity 
Just a single malicious email can poison your AI agent’s memory: resea...
VIDA Demonstrates How Passwordless Authentication Can Break the Scam C...
New AI jailbreak techniques expose limits of safety defenses, prompt i...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      S E Asia governments targeted by cyber-espionage group

      S E Asia governments targeted by cyber-espionage group

      Tuesday, June 23, 2026, 8:00 AM Asia/Singapore | Features
    • Featured

      Rethinking network and infrastructure design for resilience

      Rethinking network and infrastructure design for resilience

      Thursday, June 18, 2026, 2:17 PM Asia/Singapore | Features
    • Featured

      Bringing cybercriminals to justice in APAC

      Bringing cybercriminals to justice in APAC

      Thursday, June 11, 2026, 10:30 AM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • AWARDS 2026
  • Directory
  • E-Learning

Select Page

News

Secure onboarding needed to verify new-hire identity 

By CybersecAsia editors | Wednesday, July 15, 2026, 9:54 AM Asia/Singapore

Secure onboarding needed to verify new-hire identity 

Fake-worker schemes have become a bigger issue as AI raises the risk of impersonation

Specops, which recently launched Specops Secure Onboarding to help organizations replace assumed identity with verified identity across first-password setup, access and service-desk support, believes that identity risk now increasingly intersects with hiring and onboarding.

Employee onboarding was built for speed, not identity assurance. In distributed hiring environments, IT may be asked to provision people it has never met, while temporary passwords, manager handoffs and service-desk requests can all rely on identity being assumed rather than verified. 

As AI makes voice cloning, deepfakes and phishing attacks easier and cheaper to scale, those long-standing identity gaps are becoming harder to defend.

The 2026 Verizon Data Breach Investigations Report highlights North Korean IT worker schemes that used stolen identities and regionally hosted laptop farms to acquire jobs, estimating that these operations leveraged 15,000 possible stolen identities.

Sift also reports that AI now assists more than 82 percent of phishing emails, highlighting the growing role of AI in scalable social engineering.

For organizations, that means identity assurance can no longer start after an account has already been created. User verification must come into play at all the key points of the new-hire journey, helping confirm that the person setting a first password, receiving access or contacting the service desk is who they claim to be.

Getting onboarding digitally right
Specops’ approach: New employees set their own first Active Directory password through a secure enrollment link, verify their identity using biometric liveness detection and government-issued ID, and can be re-verified before sensitive service-desk actions are completed.

The identity check supports more than 16,000 document types across 254 countries and territories, with no end user data stored. Service-desk caller verification works inside existing ServiceNow, Jira and other ITSM workflows, with every verification logged for audit.

By giving IT, security, HR and service-desk teams one consistent approach to identity verification, organizations can reduce onboarding risk while keeping the new-hire experience simple and smooth.

“For years, organizations could afford to treat onboarding as an administrative process,” said Darren James, Senior Product Manager at Specops Software. 

“But the fake-worker schemes highlighted in the Verizon DBIR show why that assumption is becoming harder to defend. Stolen identities, remote hiring processes and AI-enabled impersonation are changing where identity risk begins, which is why verification needs to start with the very first password and continue through high-risk support interactions.”

Share:

PreviousJust a single malicious email can poison your AI agent’s memory: research
NextUS CISA advisory highlights ongoing state-sponsored attacks on routers, network devices

Related Posts

Should you curb or maintain investment budgets in 2024?

Should you curb or maintain investment budgets in 2024?

Tuesday, August 8, 2023

Nexusguard: 1,000 percent increase in DNS amplification attacks

Nexusguard: 1,000 percent increase in DNS amplification attacks

Wednesday, September 18, 2019

2023: a year of relentless attacks on web app vulnerabilities, misconfigurations

2023: a year of relentless attacks on web app vulnerabilities, misconfigurations

Tuesday, February 27, 2024

Have humans (Qu)bit off more than we can chew from quantum computing exploration?

Have humans (Qu)bit off more than we can chew from quantum computing exploration?

Tuesday, February 18, 2025

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Cyber threats have become more frequent and sophisticated, targeting organizations of all sizes across all …Download Whitepaper
  • Zero Trust Made Simple: Why it matters and how to get started

    Zero Trust Made Simple: Why it matters and how to get started

    Data breaches and cyberattacks are no longer limited to large, high-profile organizations.Download Whitepaper
  • Cloud Secure Edge: Remote access, better security

    Cloud Secure Edge: Remote access, better security

    ​SonicWall Cloud Secure Edge™ is a modern, cloud-native Security Service Edge (SSE) solution that addresses …Download Whitepaper
  • Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • How a Vietnamese D2C retailer built its own secure digital infrastructure

    How a Vietnamese D2C retailer built its own secure digital infrastructure

    Would your organization build your own digital infrastructure – including AI governance and cybersecurity – …Read more
  • Cyber protection for medical clinics in Singapore

    Cyber protection for medical clinics in Singapore

    As Singapore’s healthcare sector becomes increasingly digital and interconnected, clinics are facing heightened cyber risks, …Read more
  • India’s WazirX strengthens governance and digital asset security

    India’s WazirX strengthens governance and digital asset security

    Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
  • Bangladesh LGED modernizes communication while addressing data security concerns

    Bangladesh LGED modernizes communication while addressing data security concerns

    To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more

Bottom sidebar

Other News

  • VIDA Demonstrates How Passwordless Authentication Can Break the Scam Chain

    Monday, July 13, 2026
    KUALA LUMPUR, Malaysia, July 13, …Read More »
  • Sparsa AI Launches Sovereign Enterprise AI Platform with Global Deployment at QNET

    Wednesday, July 8, 2026
    The Sparsa AI Enterprise Operating …Read More »
  • Conifers AI Opens Singapore Data Region, Bringing Local Data Residency to Asia-Pacific Security Teams

    Wednesday, July 8, 2026
    With data regions now spanning …Read More »
  • DXC Opens Flagship AI-first Customer Experience Center in Bengaluru

    Tuesday, July 7, 2026
    Strengthens DXC’s India presence with …Read More »
  • D-Link Brings Advanced AI Fall Detection and Privacy Protection to Home Elderly Care with the New DCS-8610 Wi-Fi Camera

    Monday, July 6, 2026
    Advanced technologies traditionally found in …Read More »
  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2026 CybersecAsia All Rights Reserved.