- HX Weekly by Hexagon Center
- Posts
- The last password?
The last password?
This edition stresses the urgent need to abandon traditional passwords in favor of Multi-Factor Authentication (MFA) as vulnerabilities—such as Microsoft Edge exposing cleartext passwords—continue to surface. Beyond authentication, the newsletter highlights a severe threat landscape marked by a massive $725 million surge in cyber-enabled cargo theft, £102 million lost to romance scams, and widespread phishing campaigns exploiting remote access tools. To combat the growing psychological toll of the modern internet, the Hexagon Center is also introducing a "Digital Defense" framework to help prevent online radicalization and is launching a new video series designed to help users take back control of their social media habits.
Daniel Masterson, Ai Courtrie Buson & Bard Gee
May 08, 2026
☝️ TWA
Are you still employing passwords without the implementation of two-factor authentication? If so, you may have to question yourself or the institution that failed to provide you with the additional layer of security. |
🤷♀️ What now?: Look out for the one time you are only using your password to log into an account.
Tools: Learn how to use an authentication app and other methods of authentications.
WATCH OUT ◉_◉ Romance scammers turn sweet talk into £102M payday
📰 Security Highlights
Biggest threats this week was on critical infrastructures across the globe. But that’s not the only big threats. A fast and worrying trend is digital cargo theft. (Read about that in “Meanwhile”)
That’s another reason for you to adopt MFA as soon as you can.
There are quite a few things that were launched in the last weeks and we are proud to integrate it here into the newsletter. First, you’ll see our new videos, “More You,” in one of the video features here.
In the next week, look out for fun instructions on how to control your social media consumption in our videos called YouTube, TikTok, Instagram and Facebook. Yes, 4 different videos.
Given the recent events and the general rise in political tension, Hexagon Center is taking proactive steps to help prevent radicalization online.
Hexagon Center is doubling down on our mission to provide the public with the tools necessary to navigate these turbulent digital waters. We urge our community to adopt a framework of "Digital Defense":
1. Critical Consumption: Treat every piece of inflammatory content with the same skepticism as an unverified email attachment.
2. Algorithmic Awareness: Recognize when an interface is "nudging" you toward more extreme viewpoints.
3. Human-Centric Security: Prioritize real-world connection and civil discourse as the primary safeguards against the isolation that fuels radicalization.
HOUSEKEEPING
Glossary/Legend:
Zero Trust - a strategic cybersecurity framework based on the principle of "never trust, always verify," requiring strict identity authentication and authorization for every user and device, whether inside or outside the network perimeter. It assumes breach, removes implicit trust, and employs granular, least-privilege access controls to protect resources.
Holistic security - a comprehensive strategy that integrates various protection layers—physical, digital, psycho-social, and organizational—to safeguard individuals, communities, or systems, recognizing that true security involves overall well-being, not just isolated technical defenses.
Personal Identifier - A unique word or phrase shared exclusively with an individual or a group, serving as a means of identification and affirmation within the established relationship. It is recommended that 2 or more Personal Identifiers be established per person.
Malware (short for malicious software) - refers to any intrusive software developed by cybercriminals (often called hackers) to steal data and damage or destroy computers and computer systems.
Ransomware - A type of malware that locks or encrypts a victim's files and demands a ransom payment to unlock and decrypt them. Ransomware can infect a variety of devices, including computers, smartphones, printers, and more.
Privacy Notice: HX Weekly and the Hexagon Center are committed to your digital security. We do not collect, track, or store any personal information from our subscribers beyond the email address provided for delivery.
Spread cybersecurity culture
Do you have any suggestions on how we can further share this newsletter? Tell your friends and family about us by sharing with them the Hexagon Center official website:
View archives at hxweekly.beehiiv.com
Even though we aim to provide you the most current and critical information to keep you safe, threat actors work 24/7 and this newsletter publishes only once a week. Even though we are available via a hotline, it is crucial that you stay up to date via other sources as well to be informed on how you may be at risk.
You may reply to this newsletter or email us at
[email protected]
Send us any questions or things you want to talk about. Please share some fun facts with us. We welcome feedback and suggestions.
Hexagon Center is formed as a nonprofit corporation in California for public benefit,
and is tax-exempt under section 501(c)(3) of the Internal Revenue Code.
DISCLAIMER
Cybersecurity is an ever-changing field, and threats may evolve. While Hexagon Center strives to provide accurate and timely information, we cannot guarantee absolute security. Users are responsible for implementing their security measures and staying informed about the latest cybersecurity developments. Hexagon Center is not responsible for any cyber or scam attacks by our readers. HX Weekly tips are advice are not official positions of Hexagon Center nor is Hexagon Center responsible for its content.
Content of this newsletter is not an official representation of Hexagon Center.
Reply