In a world where identity has become the new gold, this month’s tech news takes us from exciting innovations to ingenious threats. Get ready for a quick tour of why digital identity and cybersecurity were key topics this month. Let’s dive in!
Blockchain and the New Digital Identity in Fintech
Digital trust has become both an asset and a vulnerability. It is no surprise that digital identity based on blockchain is growing by leaps and bounds: the global blockchain identity market is projected to grow from $1.1 billion in 2024 to nearly $119 billion in 2032. Why all the interest? Because decentralized solutions promise to put people in control of their data and reduce fraud. Concepts such as self-sovereign identity (SSI), non-fungible tokens (NFTs) or even soulbound tokens (non-transferable tokens linked to a person) are redefining how we manage credentials: imagine proving you’re of legal age without revealing your date of birth, or using an NFT as a digital bank ID.
We are already seeing concrete examples: banks in Europe that have reduced data breach attempts by 85% by using blockchain for secure transactions, or startups securing millions in funding to combat synthetic fraud using AI and blockchain. Digital identity is the new battleground, and also the new gold mine, where fintech and cybersecurity converge. (Source: AInvest)
Smart Identity Protection: Okta Enhances Adaptive MFA
Talking about digital identities wouldn’t be complete without improvements in authentication. This month, Okta (a leading identity management platform) announced a new layer of defense integrated into its adaptive multi-factor login. Specifically, Okta now offers Identity Threat Protection with specialized detections that are activated alongside its adaptive MFA. What does this mean in practice? Imagine that an administrator’s or privileged user’s account begins to exhibit suspicious behavior, such as a login attempt from an unusual country or sudden device changes.
In short, multi-factor authentication is no longer static; it is now dynamic and “smart”, capable of reacting to threats in real time. For businesses, this promises to thwart advanced attacks (such as session hijacking or lateral movement by intruders) without relying solely on the user. It’s another step toward login experiences that are convenient yet secure, where technology works behind the scenes to ensure that only legitimate users—and no one else—access what they’re supposed to. (Source: Okta)
Cybersecurity in the Age of AI: The Achilles' Heel of Small and Medium-Sized Businesses
A recent article noted that, with advances in artificial intelligence, cybercrimes have become more devastating and have already led to the closure of some 25,000 small and medium-sized businesses in a single country.
Contrary to popular belief, cyberattacks do not discriminate based on size or sector: whether you’re an SME in Colombia, El Salvador, or Chile, if cybercriminals find a vulnerability, they will exploit it without hesitation. The figures in Latin America are alarming: according to Kaspersky, 72% of SMEs in the region have suffered at least one cybersecurity incident, and often by the time they react , it is already too late—information, reputation, or money have already been compromised. In Colombia, for example, reports of cybercrimes increased by 23% in 2024 compared to the previous year.
The most common attacks include deepfakes, self-learning malware, hyper-personalized phishing… and the list goes on. Experts warn that cybersecurity can no longer be treated as a secondary or optional concern for businesses.
The good news is that, if handled properly, it can serve as a catalyst for growth: investing in the protection of customer data, transactions, and digital assets builds trust (a competitive advantage) and prevents the enormous costs associated with recovering from an incident. By 2025, security is the foundation upon which even the smallest SME can innovate without fear. The era of AI brings risks, yes, but with preparation, it can also bring opportunities for those who know how to turn cybersecurity into a strength rather than an Achilles’ heel. (Source: Portafolio)
Malware Hidden in Plain Sight: The DNS Trick
And we’ll wrap up with a story straight out of a cyber-espionage movie: Could malware be hidden in something as routine as DNS queries? It turns out the answer is yes. Researchers discovered that hackers are using DNS records—typically viewed as harmless—to hide and assemble malware directly in a device’s memory. The trick involves fragmenting the malicious code, storing it in TXT records under controlled subdomains, and then reassembling it through simple DNS queries, evading nearly all traditional detection systems.
Although based on older methods such as DNS tunneling, this technique poses a modern and ingenious threat. Most organizations do not inspect their DNS traffic with the same rigor as they do web or email traffic, making the protocol an ideal blind spot. The lesson is clear: no channel is trivial. Including DNS in the security strategy is urgent if we want to close those invisible doors that attackers are learning to exploit with mastery. (Source: arsTechnica)
Did you find these trends helpful? At TecOnDeck , we’ll continue to monitor the identity and cybersecurity landscape month by month with this fresh approach. Until the next installment of the month’s top stories, and remember: the digital identity you protect today will be your competitive advantage tomorrow!
