Tag: identity
-
Identity Security als digitale Hygiene: Der unterschätzte Cybersecurity-Hebel
Was fehlt, ist der Brandschutzbeauftragte. Nur wer dieses Fundament sichtbar macht, kann es pflegen, ausbauen und gegen neue Bedrohungen absichern. In einer Zeit von Ransomware, KI-Agenten, Cloud-Abhängigkeiten First seen on infopoint-security.de Jump to article: www.infopoint-security.de/identity-security-als-digitale-hygiene-der-unterschaetzte-cybersecurity-hebel/a45378/
-
How to Govern AI Agents Using Non-Human Identity Principles
First seen on scworld.com Jump to article: www.scworld.com/program-guide/how-to-govern-ai-agents-using-non-human-identity-principles
-
Händewaschen als Best Practice: Lernkultur zwischen Krankenhaushygiene und Identity Security
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/haendewaschen-lernkultur-krankenhaushygiene-identity-security
-
Palo Alto Networks CEO: CyberArk Has Already ‘Surpassed’ Expectations As Agentic Identity Security Heats Up
Palo Alto Networks’ acquisition of identity security powerhouse CyberArk is off to a rapid start as part of the cybersecurity giant’s platform”, and is poised to help pave the way for more large-scale M&A at the company, according to CEO Nikesh Arora. First seen on crn.com Jump to article: www.crn.com/news/security/2026/palo-alto-networks-ceo-cyberark-has-already-surpassed-expectations-as-agentic-identity-security-heats-up
-
Identity Governance und KI-Agenten: Interview mit Dr. Heiko Klarl, CEO von Nexis
In dem Interview erläutert Dr. Klarl, warum Identity Governance angesichts des wachsenden Drucks durch KI-Agenten, DORA und NIS2 grundlegend überdacht werden muss. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/identity-governance-und-ki-agenten-interview-mit-dr-heiko-klarl-ceo-von-nexis/a45358/
-
MokN raises $15 million to combat identity-based cyber threats
First seen on scworld.com Jump to article: www.scworld.com/brief/mokn-raises-15-million-to-combat-identity-based-cyber-threats
-
Microsoft Entra pushes passkeys, tightens identity security
Microsoft has released multiple identity and network access capabilities for Entra, its family of identity and network access products that help organizations implement a zero … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/02/microsoft-entra-latest-security-updates/
-
DNS-AID lets AI agents find and verify each other through DNS
AI agents run across many platforms, and each one needs a way to locate and confirm the identity of the others it works with. The Linux Foundation’s DNS-AID project … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/01/dns-aid-ai-agent-discovery-dns/
-
Why AI Agents Are Creating a New Security Blind Spot
Okta’s Charlotte Wylie on Identity, Governance and Rogue AI Access. AI agents are becoming a new identity type inside enterprises, creating visibility gaps and security risks most organizations aren’t prepared to manage. Okta’s Charlotte Wylie explains why shadow agents, overprovisioned access and AI-driven attacks demand a new governance model. First seen on govinfosecurity.com Jump to…
-
MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You
Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they couldn’t log in without the second factor. While that logic was sound, attackers have now figured out that they don’t need to steal the second factor: they just need the…
-
MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You
Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they couldn’t log in without the second factor. While that logic was sound, attackers have now figured out that they don’t need to steal the second factor: they just need the…
-
What happens when security teams inherit identity
At the Span Cyber Security Arena conference, I sat down with Eric Woodruff, Chief Identity Architect at Semperis, to talk about how organizations perceive identity and the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/26/eric-woodruff-semperis-identity-security/
-
Hackers Exploit Azure RBAC to Steal Key Vault Secrets
Hackers are increasingly exploiting cloud identity and access management systems, and a methodical, sophisticated, and multi-layered attack, where a threat actor we track as Storm-2949 launched a relentless campaign with a singular focus: to exfiltrate as much sensitive data from a target organization’s high-value assets as possible. The attack, attributed to a threat actor tracked…
-
71 Prozent der Unternehmen waren im vergangenen Jahr von mindestens einem Identitätsdiebstahl betroffen
Der Report ‘State of Identity Security 2026″ von Sophos kommt zu dem Ergebnis, dass menschliches Versagen und mangelhaftes Identitätsmanagement bei nicht-menschlichen Akteuren die Hauptursachen für die meisten Angriffe sind, während autonome KI das Risiko weiter erhöht. Die Umfrage zeigt, dass 71 Prozent der Unternehmen (Deutschland: 62 Prozent) im vergangenen Jahr mindestens einen identitätsbezogenen Sicherheitsvorfall erlitten…
-
Was uns der Vercel-Angriff über moderne Identitätsrisiken lehrt
KI-Tools verändern die Art, wie Unternehmen arbeiten und die Art, wie sie angegriffen werden. In den vergangenen Monaten folgte eine wachsende Zahl von Sicherheitsvorfällen einem Muster, das klassische Identity-Governance-Lösungen schlicht nicht erkennen können. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/vercel-angriff-moderne-identitaetsrisiken
-
7 identity security best practices for the Agentic AI era
First seen on scworld.com Jump to article: www.scworld.com/perspective/7-identity-security-best-practice-for-the-agentic-ai-era
-
7 identity security best practices for the Agentic AI era
First seen on scworld.com Jump to article: www.scworld.com/perspective/7-identity-security-best-practice-for-the-agentic-ai-era
-
Silverfort-Fabrix Deal Targets the Identity Blind Spot MSSPs Can’t Ignore
First seen on scworld.com Jump to article: www.scworld.com/news/silverfort-expands-runtime-identity-security-platform-with-fabrix-deal
-
How identity became the new security battleground
Tags: identityFirst seen on scworld.com Jump to article: www.scworld.com/perspective/how-identity-became-the-new-security-battleground
-
Zscaler Targets AI Identity Risk With Symmetry Acquisition
Startup Symmetry Systems Maps Relationships Across AI, SaaS and Cloud Assets. Zscaler plans to acquire San Francisco-based Symmetry Systems to unify visibility across AI models, identities, applications and datasets, helping enterprises track AI lineage, govern agentic identities and enforce granular zero trust controls across cloud and SaaS environments. First seen on govinfosecurity.com Jump to article:…
-
New Jamf CEO Sees AI Advances as Apple Security Driver
CEO Beth Tschida: AI Developers’ Apple Preference Could Strengthen Jamf’s Position. Chief Technology Officer Beth Tschida takes over as CEO of Minneapolis-based Jamf with a mandate to define how the Apple management and security vendor uses AI internally while helping CISOs govern shadow AI, identity and policy controls across enterprise Apple fleets. First seen on…
-
AI Agents Are Shifting Identity Security Budget Dynamics
AI agent projects are proliferating throughout the enterprise, and those AI agent identities require management, security, and governance. New Omdia research shows the AI agent identity budget dynamics are very different than traditional IAM projects. First seen on darkreading.com Jump to article: www.darkreading.com/identity-access-management-security/shifting-budget-dynamics-identity-security-ai-agents
-
OAuth-Token als Einfallstor Was der Vercel-Angriff über moderne Identitätsrisiken lehrt
KI-Tools verändern die Art, wie Unternehmen arbeiten und die Art, wie sie angegriffen werden. In den vergangenen Monaten folgte eine wachsende Zahl von Sicherheitsvorfällen einem Muster, das klassische Identity-Governance-Lösungen schlicht nicht erkennen können: Ein Mitarbeiter verbindet ein KI-Tool eines Drittanbieters mit einem Unternehmenskonto, die Infrastruktur dieses Tools wird kompromittiert, und Angreifer gelangen über die entstandene…
-
IAM as a Service Warum Identity-Management zur Cloud-Plattform wird
Identity and Access-Management galt lange als klassisches Infrastrukturprojekt: komplex, teuer und eng an interne Verzeichnisdienste gekoppelt. Doch mit Cloud-Transformation, hybriden Arbeitsmodellen und KI-gestützten Anwendungen gerät das traditionelle IAM-Modell zunehmend an seine Grenzen. Genau hier setzt der Ansatz ‘IAM as a Service” (IAMaaS) an, den Airlock in seinem aktuellen Whitepaper als Zukunftsmodell für modernes Customer Identity…
-
IAM as a Service Warum Identity-Management zur Cloud-Plattform wird
Identity and Access-Management galt lange als klassisches Infrastrukturprojekt: komplex, teuer und eng an interne Verzeichnisdienste gekoppelt. Doch mit Cloud-Transformation, hybriden Arbeitsmodellen und KI-gestützten Anwendungen gerät das traditionelle IAM-Modell zunehmend an seine Grenzen. Genau hier setzt der Ansatz ‘IAM as a Service” (IAMaaS) an, den Airlock in seinem aktuellen Whitepaper als Zukunftsmodell für modernes Customer Identity…
-
When Identity is the Attack Path
Consider a cached access key on a single Windows machine. It got there the way most cached credentials do – a user logged in, and the key stored itself automatically. Standard AWS behavior. No one misconfigured anything or violated a policy. Yet that single key, which was easily accessible to a minor-league attacker, could have…
-
Identity Alone Isn’t Enough: Why Device Security Has to Share the Load
Identity checks alone can’t stop attackers using stolen session tokens and compromised devices. Specops Software outlines why Zero Trust strategies increasingly depend on continuous device verification. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/identity-alone-isnt-enough-why-device-security-has-to-share-the-load/
-
Agent AI is Coming. Are You Ready?
New Industry Data Just Released Suggests Not.On May 19th, 2026, Orchid Security released the results of our Identity Gap: Snapshot 2026. Among the findings, “identity dark matter” (the unseen, unmanaged elements of identity) now overshadows the visible elements 57% vs. 43%. And it couldn’t have occurred at a worse time, with enterprises embracing Agent AI…
-
Agent AI is Coming. Are You Ready?
New Industry Data Just Released Suggests Not.On May 19th, 2026, Orchid Security released the results of our Identity Gap: Snapshot 2026. Among the findings, “identity dark matter” (the unseen, unmanaged elements of identity) now overshadows the visible elements 57% vs. 43%. And it couldn’t have occurred at a worse time, with enterprises embracing Agent AI…