Tag: identity
-
Driving Passwordless Adoption with FIDO and Biometric Authentication
Tags: access, attack, authentication, awareness, banking, breach, business, cloud, compliance, container, control, credentials, cyber, data, defense, fido, finance, fraud, government, Hardware, iam, identity, insurance, login, mobile, passkey, password, phishing, risk, service, technology, threat, trainingDriving Passwordless Adoption with FIDO and Biometric Authentication madhav Tue, 01/13/2026 – 06:13 For decades, passwords have been the default mechanism for securing digital access. They are deeply embedded in enterprise systems and workflows, yet they were never designed to withstand today’s threat landscape. Cybersecurity Sarah Lefavrais – IAM Product Marketing Manager More About This…
-
Inside the Growing Problem of Identity Sprawl
Why Identity Life Cycles, Visibility and Privilege Are Falling Out of Sync. Modern enterprises are struggling to maintain control over identity management. While authentication still works, a systemic drift in how identities are created and discarded is creating an expanded attack surface that adversaries are increasingly exploiting. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/inside-growing-problem-identity-sprawl-a-30503
-
1Password Focuses on Identity Security in Agentic AI Era
Former AWS Exec Nancy Wang to Lead 1Password’s Agentic AI Security Strategy. 1Password named former AWS executive Nancy Wang as chief technology officer to oversee the evolution of its platforms to manage new artificial intelligence-driven workflows. Agents are really their own class of identities, Wang said. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/1password-focuses-on-identity-security-in-agentic-ai-era-a-30499
-
Why the Start of the Year Is Prime Time for Insider Risk
As workforce transitions accelerate, identity becomes the primary attack surface, increasing insider risk. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/why-the-start-of-the-year-is-prime-time-for-insider-risk/
-
How GenAI Is Aiding a Rise in Identity-Based Threats
Thales CISO Eric Liebowitz Outlines Urgent Defenses for AI-Driven Phishing Threats. The shift from brute-force attacks to AI-powered phishing is creating tougher challenges for defenders. Thales CISO, Americas, Eric Liebowitz says combining employee training with behavioral monitoring and AI guardrails is essential to mitigate identity risk. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/how-genai-aiding-rise-in-identity-based-threats-a-30493
-
Tenable Is a Gartner® Peer Insights Customers’ Choice for Cloud-Native Application Protection Platforms
Tags: ai, api, attack, automation, banking, ciso, cloud, compliance, control, cybersecurity, data, detection, gartner, google, governance, healthcare, identity, infrastructure, microsoft, risk, risk-management, service, software, strategy, technology, tool, vulnerability, vulnerability-managementThis recognition, based entirely on feedback from the people who use our products every day, to us is a testament to the unmatched value Tenable Cloud Security CNAPP offers organizations worldwide. Our key takeaways: In our view, this peer recognition confirms Tenable’s strategic value in helping organizations worldwide, across all industry sectors, preemptively close critical…
-
Identity Crisis von Rubrik Zero Labs – KI-Agenten Bedrohung durch Nicht-menschliche Identitäten nehmen zu
First seen on security-insider.de Jump to article: www.security-insider.de/rubrik-identity-resilience-2025-ki-agenten-a-fabb6de4274486b7c97b6ef906635fb6/
-
How are Agentic AI systems ensuring compliance?
Are Non-Human Identities (NHIs) the Missing Piece in Agentic AI Compliance? There’s a silent yet critical player: the Non-Human Identity (NHI). With organizations increasingly adopting Agentic AI systems to streamline operations and enhance compliance, the role of NHIs in securing these systems has never been more crucial. But what exactly are NHIs, and how do……
-
Cloud-Migration und Identity Security: Digitale Transformation, Benutzerfreundlichkeit und Sicherheit sind vereinbar
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/cloud-migration-identity-security-digitale-transformation-benutzerfreundlichkeit-sicherheit-vereinbarkeit
-
CrowdStrike Adds Real-Time Identity Control With SGNL Deal
$740M SGNL Acquisition Boosts Dynamic Identity Enforcement for Humans and AI Agents. With the $740M acquisition of SGNL, CrowdStrike aims to deliver dynamic access control for human and nonhuman identities. The real-time enforcement layer expands CrowdStrike’s identity capabilities amid a market shift toward zero standing privilege and agentic workforce security. First seen on govinfosecurity.com Jump…
-
What AI Agents Can Teach Us About NHI Governance
Agentic AI is a stress test for non-human identity governance. Discover how and why identity, trust, and access control must evolve to keep automation safe. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/what-ai-agents-can-teach-us-about-nhi-governance/
-
CrowdStrike Acquires Identity Security Startup SGNL in $740 Million Deal
CrowdStrike has announced its agreement to acquire SGNL, a leading identity-first security company, for $740 million. The acquisition will strengthen CrowdStrike Falcon® Next-Gen Identity Security by adding continuous, context-aware authorization capabilities across human, non-human, and AI agent identities in cloud environments. Why This Acquisition Matters The identity attack surface has expanded rapidly due to cloud…
-
No Rest in 2026 as Patch Alerts Amass for Cisco, HPE and n8n
Cisco Fixes ISE Bug; HPE OneView Under Fire; Exploit Code Drops for n8n Flaw. The new year is off to a fresh start on the vulnerability and exploit alert front: Cisco has patched a critical Identity Services Engine; cybersecurity officials warn that an HPE OneView vulnerability is being actively exploited; and proof-of-concept exploits drop for…
-
CrowdStrike to Buy SGNL to Expand Identity Security Capabilities
The CrowdStrike-SGNL deal underscores how identity security has become a critical component of enterprise cybersecurity as companies add cloud services and deploy AI-driven tools. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/crowdsrike-buy-sgnl-expand-identity-security-capabilities
-
CrowdStrike to acquire SGNL for $740M, expanding real-time identity security
Market consolidation accelerates: The $740 million price reflects broader consolidation as cybersecurity vendors race to expand identity capabilities. The deal marks the latest in a wave of identity security acquisitions as platform vendors expand beyond core products. Liu compared the move to Palo Alto Networks’ acquisition of CyberArk in 2025, noting both vendors are racing…
-
CrowdStrike to acquire SGNL for $740M, expanding real-time identity security
Market consolidation accelerates: The $740 million price reflects broader consolidation as cybersecurity vendors race to expand identity capabilities. The deal marks the latest in a wave of identity security acquisitions as platform vendors expand beyond core products. Liu compared the move to Palo Alto Networks’ acquisition of CyberArk in 2025, noting both vendors are racing…
-
SCIM Provisioning Explained: Automating User Lifecycle Management with SSO
Learn how SCIM provisioning automates user lifecycle management. Explore the benefits of SCIM with SSO for enterprise identity and access management. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/scim-provisioning-explained-automating-user-lifecycle-management-with-sso/
-
What will happen with Starmer’s digital ID scheme in 2026?
Last year, the UK government announced ambitious plans for a national digital identity scheme, but will 2026 lead to more disenchantment or new excitement? First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366637124/What-will-happen-with-Starmers-digital-ID-scheme-in-2026
-
Enterprises still aren’t getting IAM right
Tags: access, ai, api, authentication, automation, cloud, control, credentials, cybersecurity, data, email, governance, iam, identity, incident response, infrastructure, least-privilege, password, risk, saas, service, toolJust 1% have fully implemented a modern just-in-time (JIT) privileged access model;91% say at least half of their privileged access is always-on (standard privilege), providing unrestricted, persistent access to sensitive systems;45% apply the same privileged access controls to human and AI identities;33% lack clear AI access policies.The research also revealed a growing issue with “shadow…
-
Securing MCP Servers at Scale: How to Govern AI Agents with an Enterprise Identity Fabric
Here’s a scenario you’ve probably seen: A developer downloads a Model Context Protocol (MCP) server from GitHub, runs it locally, connects it to their chat client or agent workflow, authorizes with a Personal Access Token (PAT) that grants excessive permissions, and starts using it. It works great. Then another developer does the same thing. And……
-
Cisco identifies vulnerability in ISE network access control devices
rotate ISE credentials for those with existing and approved access;ensure only those who need access have credentials;reduce the number of devices that can access the ISE server;patch as soon as it’s possible to take the server offline.In its notice to customers, Cisco says a vulnerability [CVE-2026-20029] in the licensing features of ISE and Cisco ISE…
-
As agents run amok, CrowdStrike’s $740M SGNL deal aims to help get a grip on identity security
Authentication is basically solved. Authorization is another thing entirely… First seen on theregister.com Jump to article: www.theregister.com/2026/01/08/crowdstrikes_740m_sgnl_deal_proves/
-
CrowdStrike Acquires SGNL for $740 Million to Thwart AI-Powered Cyber Threats
Tags: ai, credentials, crowdstrike, cyber, cybersecurity, defense, exploit, hacker, identity, intelligence, startup, technology, threatCrowdStrike Inc. said Thursday it will acquire identity security startup SGNL in a deal valued at $740 million the latest move by the cybersecurity giant to fortify its defenses against increasingly sophisticated artificial intelligence (AI)-powered cyberattacks. The acquisition centers on SGNL’s continuous identity technology, designed to prevent hackers from exploiting user credentials as entry.. First…
-
CrowdStrike to buy identity startup SGNL for nearly $740M
CrowdStrike is buying identity management startup SGNL, a move that underscores how identity security has become a central battleground in enterprise cybersecurity as companies add cloud services and deploy AI-driven tools. The cybersecurity firm did not disclose financial terms in a Thursday announcement, but CrowdStrike CEO George Kurtz told CNBC the deal is valued at…
-
Cisco ISE Vulnerability Enables Access to Sensitive Data
Cisco has disclosed a new XML External Entity (XXE) vulnerability in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) that could allow authenticated attackers with administrative access to read sensitive data from the underlying operating system. The vulnerability is tracked as CVE-2026-20029 and is rated CVSS 4.9 (medium severity), but its…
-
Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability
Cisco addressed a medium-severity vulnerability in ISE and ISE-PIC after a public PoC exploit was disclosed. Cisco addressed a medium-severity vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) after a public PoC exploit was disclosed. The vulnerability resides in the licensing feature of Cisco ISE…