SIM swap attacks exploit misplaced trust in phone numbers to bypass authentication controls and seize high-value accounts. By taking over phone-based credentials, attackers reveal a critical flaw in identity security that depends too heavily on human processes.

Workday, one of America’s largest job-application software providers, has disclosed a cyberattack that exposed personal data. In a Friday blog post, the company warned that the hackers’ “goal is to trick employees,” urging vigilance across its user base.