Katsh Digital ID

09/30/2025

Salesforce AI Hack Exposes a Bigger Problem!

Noma Security’s discovery of ForcedLeak, a prompt injection attack that targeted Salesforce’s Agentforce platform, shows just how quickly attackers are adapting to exploit AI-powered systems.

Here’s what happened:
- A malicious payload slipped into Salesforce’s Web-to-Lead forms could trick AI agents into exfiltrating sensitive CRM data.
- An expired, trusted Salesforce domain left the door open for attackers to quietly receive that data.
-The attack had a high chance of going undetected.

This incident is a warning: as enterprises integrate AI agents into critical workflows, they are also multiplying their attack surface. CRM data, customer trust, and brand reputation all hang in the balance.

At KATSH.ID, we see the lesson clearly: identity and access management must evolve in sync with AI adoption. Securing the digital economy requires trusted, fraud-resistant digital identities that keep both people and machines in check.

The AI-driven economy will only thrive if digital identities are trusted, resilient, and fraud-resistant. That’s the future KATSH.ID is building.

Source: https://www.securityweek.com/salesforce-ai-hack-enabled-crm-data-theft/

09/23/2025

The U.S. Secret Service recently dismantled a massive SIM server network in the New York tristate area, seizing over 300 devices and 100,000 SIM cards. This network was capable of carrying out anonymous threats, disrupting cell towers, enabling denial-of-service attacks, and facilitating covert communication between nation-state actors and criminal enterprises. The operation coincided with the UN General Assembly, highlighting the potential for serious disruption to critical telecommunications.

KATSH.ID Insights:
This incident underscores how fragile our communication infrastructure remains and how identity is at the core of both the threat and the solution. Criminals and nation-state actors exploit anonymity to launch large-scale attacks, proving once again that static systems and weak verification methods are not enough. At KATSH.ID, we believe future security lies in strong, verifiable digital identities that remove anonymity for bad actors while preserving trust and privacy for individuals and organizations.

09/09/2025

The Salesloft Drift breach is a wake-up call!

Mandiant’s investigation confirmed attackers stole OAuth tokens and used them to access Salesforce, Slack, AWS, and more, affecting companies from Cloudflare to Palo Alto Networks.

The lesson?
Tokens = risk. Once stolen, they grant attackers the same trust as the app itself.

KATSH.ID Insights: Unlike token-based systems, KATSH.ID eliminates this risk by tying identity directly to the individual, not to credentials or access tokens that can be stolen.

09/05/2025

Hackers Exploit OAuth Weaknesses in Latest Jaguar Land Rover Breach

Hackers linked to Scattered Spider and Lapsus$ have claimed responsibility for a cyberattack on Jaguar Land Rover, disrupting production and sales. The group shared evidence on Telegram and is reportedly attempting to extort the company. This attack follows a series of breaches across UK retailers earlier this year, many of which exploited stolen credentials and OAuth tokens.

KATSH.ID Insight:�This incident underscores how vulnerable traditional, token-based authentication methods remain. Once an OAuth token is stolen, attackers can move freely inside systems without raising alarms. At KATSH.ID, we’ve built a different model, one that eliminates reliance on credentials and tokens altogether. By tying authentication directly to a verified individual through KATSH.ID, we remove one of the most common entry points for large-scale breaches.

09/03/2025

AI is no longer just a tool for productivity—it’s now a weapon for deception.

This week, a 66-year-old woman in California lost her home and life savings after falling victim to a romance scam powered by AI deepfakes. Scammers used hyperrealistic video and voice cloning to impersonate an actor, manipulating her into sending more than $400,000.

The lesson isn’t just about one tragic case. It’s about how AI fraud is evolving faster than society’s defenses, exploiting human trust at scale. Cybersecurity must now go beyond protecting data; it has to protect identity itself.

At KATSH.ID, we believe the future of security lies in building digital identities that can’t be faked, cloned, or manipulated.

08/20/2025

From Cars to Credentials: Why Identity Is the Master Key

TechCrunch recently reported that a security researcher uncovered critical flaws in a major carmaker’s dealership portal. These vulnerabilities could have allowed attackers to create admin accounts, access sensitive customer and financial data, track vehicles, and even remotely unlock cars.

The discovery is a reminder that as cars, homes, and financial platforms become more connected, weak authentication creates cascading risks. In this case, a single oversight in identity management exposed more than 1,000 dealerships across the United States.

It is becoming increasingly clear that securing digital systems is no longer just about protecting devices, but about protecting identities at the core. At KATSH.ID, we believe solving identity at its foundation is the key to preventing breaches like this and building the trust the digital economy depends on.

03/21/2025

Ask Me Anything session with Katsh's CEO will take place on March 24th at 3pm PST. Sign up for our Q&A session. Don't miss this exclusive opportunity to engage and learn more about this generational investment opportunity.

03/21/2025

🎉 Exciting Special Event! 🎉
We’re thrilled to announce the first-ever Go Fund Yourself Show Marathon on Cheddar TV on March 23rd, from 1-4 PM EST/10-1 AM PST! 🎬
Join us for this event featuring all episodes aired to date, offering fans the perfect opportunity to catch up on the series or enjoy an epic marathon viewing experience!
Don’t miss the chance to watch the KATSH DIGITAL ID episode and engage with the series in a whole new way.
Thank you for your continued support, and we can't wait to share this exciting event with you! 🙌🎉

Following the airing of the Marathon, an Ask Me Anything session with Katsh's CEO Eli F. will take place on March 24th, 3pm PST. Sign up to ask any question! https://lu.ma/amub74lx

08/15/2024

Important News: A recent data breach potentially exposed Social Security numbers and other sensitive information for millions of people. The hacking group USDoD claims to have stolen records of 2.9 billion individuals from National Public Data, a Florida-based background check company. These records reportedly include names, addresses, relatives, and Social Security numbers dating back over 30 years. The data, first put up for sale on the dark web for $3.5 million in April 2024, has since been leaked for free by a hacker in August. National Public Data has yet to confirm the breach, but advises caution.

Read article here: https://www.usatoday.com/story/tech/2024/08/15/social-security-hack-national-public-data-breach/74807903007/

Here is what you can do to protect your identity:

1. Enable Multi-Factor Authentication: Add an extra security step for your accounts.

2. Monitor Financial Accounts: Check your statements for unauthorized transactions.

3. Freeze Your Credit: Prevent new accounts from being opened in your name.

4. Update Passwords: Use strong, unique passwords for each account.

5. Use Identity Theft Protection: Consider services that monitor your personal information.

6. Avoid Phishing: Don’t click on suspicious links or share personal info with unverified sources.

7. Secure Your Devices: Keep antivirus software updated and run regular scans.

8. Check Credit Reports: Regularly review your credit reports for unfamiliar activity.

9. Use Secure Connections: Avoid public Wi-Fi for sensitive activities; use a VPN when needed.

10. Stay Informed: Follow updates on the breach and take action as needed.

The hacking group USDoD claimed it had stolen personal records, including Social Security info, of 2.9 billion people from National Public Data.

08/13/2024

A lawsuit revealed that hackers breached Jerico Pictures Inc., doing business as National Public Data, exposing the personal data of 2.9 billion people. The stolen information, including names, addresses, and Social Security numbers, was posted for sale on the dark web in April. Many affected individuals are unaware of the breach, which is one of the largest ever, rivaling Yahoo's 2013 incident. National Public Data has not yet commented on the situation.

Read Full Article: https://mashable.com/article/background-check-company-breached-3-billion-affected

Katsh Insights: The recent National Public Data breach, affecting nearly 3 billion people, is a stark reminder of the risks we face in today's digital world. At Katsh, we protect how your data is used. Even if your information is compromised, our advanced security measures ensure that you remain safe from fraud and misuse. With Katsh, you can have peace of mind knowing that your digital identity is secure, no matter what threats arise.

Just about anyone could be affected by this massive theft and not even know it.

08/08/2024

In "Seize the Opportunity: Why Now is the Perfect Time to Invest in Innovative Startups," we explore how current market volatility presents a unique chance to diversify your investment portfolio by backing agile and innovative startups. Discover why investing in early-stage companies can position you for significant growth. Learn about the market potential, the benefits of crowdfunding, and how Katsh's groundbreaking technology and proven team make it a smart investment choice. Don't miss your opportunity to invest in the future with Katsh.

https://www.linkedin.com/pulse/seize-opportunity-why-now-perfect-time-invest-innovative-kzq2c/?trackingId=kKEMk2gRTSOx8UIhgVh2gA%3D%3D

08/01/2024

“Cyberattack on World’s Largest Silver Producer Highlights Data’s Role as Goldmine”

Traditional industries, with historically low IT spending, face increasing cybersecurity threats as they undergo digital transformation. The recent cyberattack on Fresnillo, a major global producer of precious metals, highlights the growing challenges in safeguarding data and assets from sophisticated cybercriminals. With cyberattacks becoming more frequent and severe, businesses must prioritize cybersecurity as part of their risk management strategies, leveraging automation and best practices to protect sensitive information and ensure operational resilience.

Read article here: https://www.pymnts.com/cybersecurity/2024/cyberattack-world-largest-silver-producer-highlights-data-role/

The Fresnillo cyberattack underscores the need for more robust data protection. At Katsh, we ensure that even if your data is stolen, it remains unusable without your authorization. Our advanced biometric authentication, using palm recognition, provides unmatched security. With Katsh, stolen credentials are virtually useless to cybercriminals, offering peace of mind in an era of escalating cyber threats.

Check out our campaign: https://netcapital.com/companies/katshdigitalid

Empower yourself with Katsh, the first truly password-less identity access platform. Say goodbye to traditional credentials that hackers love and hello to effortless, secure access across all smart devices, with just a wave of your hand. Katsh revolutionizes authentication for seamless security.