Tag: identity
-
Adaptive Security Leadership in an Expanding Threat Surface
Tags: access, attack, automation, control, cyber, data, identity, least-privilege, resilience, risk, saas, service, technology, threat, zero-trustLast week I joined fellow security leaders at CISO Inspire Summit North for a panel discussion on The Expanding Threat Surface: Adaptive Security Leadership for 2026 and Beyond. It was a timely discussion, because the challenge facing security leaders today is not simply more threats. It is more connections, more dependencies, and more complexity. Suppliers, SaaS, identities, automation…
-
Silverfort Purchases Fabrix to Bring AI to Access Decisions
Fabrix Security Buy Adds Real-Time Decisioning for Human and Machine Identities. Silverfort’s acquisition of Israeli startup Fabrix Security adds AI-driven, real-time access decisioning built on a contextual knowledge graph, aiming to replace static policies and scale identity security for human, machine and agentic identities operating at machine speed. First seen on govinfosecurity.com Jump to article:…
-
Silverfort Purchases Fabrix to Bring AI to Access Decisions
Fabrix Security Buy Adds Real-Time Decisioning for Human and Machine Identities. Silverfort’s acquisition of Israeli startup Fabrix Security adds AI-driven, real-time access decisioning built on a contextual knowledge graph, aiming to replace static policies and scale identity security for human, machine and agentic identities operating at machine speed. First seen on govinfosecurity.com Jump to article:…
-
The Future of CIAM: Why Legacy Identity Systems Are Dead (And What Replaces Them)
The CIAM platform that got you to 1 million users won’t get you to 10 million AI agents. Legacy authentication built for humans is failing against AI-powered attacks moving at machine speed. Here’s what replaces it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/the-future-of-ciam-why-legacy-identity-systems-are-dead-and-what-replaces-them/
-
The Future of CIAM: Why Legacy Identity Systems Are Dead (And What Replaces Them)
The CIAM platform that got you to 1 million users won’t get you to 10 million AI agents. Legacy authentication built for humans is failing against AI-powered attacks moving at machine speed. Here’s what replaces it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/the-future-of-ciam-why-legacy-identity-systems-are-dead-and-what-replaces-them/
-
The Future of CIAM: Why Legacy Identity Systems Are Dead (And What Replaces Them)
The CIAM platform that got you to 1 million users won’t get you to 10 million AI agents. Legacy authentication built for humans is failing against AI-powered attacks moving at machine speed. Here’s what replaces it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/the-future-of-ciam-why-legacy-identity-systems-are-dead-and-what-replaces-them/
-
Deploying SafePaaS in Oracle E”‘Business Suite: A 90″‘Day Blueprint to Continuous, Independent Control Monitoring
This blueprint shows how a large Oracle E”‘Business Suite (EBS) enterprise deploys SafePaaS as an independent control layer alongside EBS, identity providers, and identity governance and administration (IGA), and how it operates day to day once live. It is designed for complex, audit”‘intensive EBS environments with multiple operating units, sets of books and ledgers, recurring……
-
Deploying SafePaaS in Oracle E”‘Business Suite: A 90″‘Day Blueprint to Continuous, Independent Control Monitoring
This blueprint shows how a large Oracle E”‘Business Suite (EBS) enterprise deploys SafePaaS as an independent control layer alongside EBS, identity providers, and identity governance and administration (IGA), and how it operates day to day once live. It is designed for complex, audit”‘intensive EBS environments with multiple operating units, sets of books and ledgers, recurring……
-
Mastering agentic AI security through exposure management
As AI tools evolve from siloed chatbots to autonomous, hyperconnected systems, they create a vast new attack surface. Discover how to manage this risk by focusing on visibility, agency, and semantic security to protect your organization’s increasingly complex landscape of agentic AI systems. Key takeaways Organizations have moved from siloed AI chatbots to autonomous, hyperconnected…
-
Mastering agentic AI security through exposure management
As AI tools evolve from siloed chatbots to autonomous, hyperconnected systems, they create a vast new attack surface. Discover how to manage this risk by focusing on visibility, agency, and semantic security to protect your organization’s increasingly complex landscape of agentic AI systems. Key takeaways Organizations have moved from siloed AI chatbots to autonomous, hyperconnected…
-
What Is IAM for Agentic AI? The New Perimeter of Trust in 2026
6 min readMost CISOs fear AI agent risks, but legacy IAM can’t govern autonomous systems. A new identity model built on attestation is emerging. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/what-is-iam-for-agentic-ai-the-new-perimeter-of-trust-in-2026/
-
What Is IAM for Agentic AI? The New Perimeter of Trust in 2026
6 min readMost CISOs fear AI agent risks, but legacy IAM can’t govern autonomous systems. A new identity model built on attestation is emerging. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/what-is-iam-for-agentic-ai-the-new-perimeter-of-trust-in-2026/
-
Why Traditional IAM Is No Match for Agentic AI
6 min readLegacy IAM can’t govern autonomous AI agents that spin up, execute and terminate in seconds. New identity patterns are now emerging. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/why-traditional-iam-is-no-match-for-agentic-ai/
-
AWS leans on prior ingenuity to face future AI and quantum threats
Tags: access, ai, attack, authentication, breach, cloud, communications, computer, computing, control, credentials, crypto, cryptography, cybersecurity, data, defense, encryption, exploit, google, Hardware, identity, infrastructure, Internet, lessons-learned, malicious, penetration-testing, phishing, risk, service, technology, threat, tool, updateSymmetric cryptography and the quantum threat: Back in the early 2010s, most hardware security modules used asymmetric cryptography to protect security keys. Asymmetric cryptography, the kind used to secure online communications, involves pairs of keys, one to lock, another to unlock. It’s a very useful and convenient approach when dealing with multiple parties.Amazon chose to…
-
AWS leans on prior ingenuity to face future AI and quantum threats
Tags: access, ai, attack, authentication, breach, cloud, communications, computer, computing, control, credentials, crypto, cryptography, cybersecurity, data, defense, encryption, exploit, google, Hardware, identity, infrastructure, Internet, lessons-learned, malicious, penetration-testing, phishing, risk, service, technology, threat, tool, updateSymmetric cryptography and the quantum threat: Back in the early 2010s, most hardware security modules used asymmetric cryptography to protect security keys. Asymmetric cryptography, the kind used to secure online communications, involves pairs of keys, one to lock, another to unlock. It’s a very useful and convenient approach when dealing with multiple parties.Amazon chose to…
-
Studie von Rubrik Zero Labs zeigt bedenkliche Defizite in der Identity Governance
Neue Studie von Rubrik Zero Labs zeigt bedenkliche Defizite in der Identity Governance: Unternehmen setzen autonome Systeme ohne Überwachung ein First seen on infopoint-security.de Jump to article: www.infopoint-security.de/studie-von-rubrik-zero-labs-zeigt-bedenkliche-defizite-in-der-identity-governance/a44817/
-
Identity discovery: The overlooked lever in strategic risk reduction
If you ask a CISO what keeps them up at night, the answer usually isn’t “lack of tools.” It’s uncertainty. Uncertainty about what they don’t see. Uncertainty about how far an … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/29/delinea-identity-discovery-strategy/
-
How Identity, Geopolitics and Data Integrity Define Cyber Resilience
A good cyber framework is built on the assumption that disruption is inevitable, so it must be capable of anticipating, absorbing, and adapting to it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/how-identity-geopolitics-and-data-integrity-define-cyber-resilience/
-
Warum Identity Attack Path Management durch KI immer wichtiger wird
Unternehmen priorisieren aktuell Transparenz über Angriffspfade (43 %) und Rechtebeziehungen (36 %) höher als die Integration generativer oder agentischer KI (40 %) First seen on infopoint-security.de Jump to article: www.infopoint-security.de/warum-identity-attack-path-management-durch-ki-immer-wichtiger-wird/a44809/
-
Warum Identity Attack Path Management durch KI immer wichtiger wird
Unternehmen priorisieren aktuell Transparenz über Angriffspfade (43 %) und Rechtebeziehungen (36 %) höher als die Integration generativer oder agentischer KI (40 %) First seen on infopoint-security.de Jump to article: www.infopoint-security.de/warum-identity-attack-path-management-durch-ki-immer-wichtiger-wird/a44809/
-
Inside an OPSEC Playbook: How Threat Actors Evade Detection
Threat actors are now publishing structured OPSEC playbooks to stay undetected. Flare reveals how these guides outline layered infrastructure, identity separation, and long-term evasion strategies. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/inside-an-opsec-playbook-how-threat-actors-evade-detection/
-
The Evolution of Scattered Spider: How Organizations Are Strengthening Defenses
An On Demand video from ID Dataweb. Scattered Spider is rapidly expanding its reach, exploiting identity processes and help desks to infiltrate organizations. Discover their tactics and the steps you can take now to reduce risk. Watch the webinar. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/evolution-scattered-spider-how-organizations-are-strengthening-defenses-a-31524
-
Stopping AiTM attacks: The defenses that actually work after authentication succeeds
Tags: 2fa, access, attack, authentication, awareness, breach, communications, compliance, control, credentials, data, defense, detection, email, finance, framework, identity, incident response, login, mfa, microsoft, monitoring, nist, passkey, phishing, risk, service, threat, tool, trainingThe 3 controls that close the gap: Control #1: Bind sessions to managed devices The most impactful single control for session security is requiring managed, compliant devices as a condition of accessing sensitive resources. When access policies, such as Microsoft Entra Conditional Access, require that the device presenting a session token is enrolled, managed and…
-
Beyond the perimeter: Why identity and cyber security are one single story
By James Odom, Director of Cyber, and Jim Small, Director of Identity at Hippo Digital For years, identity and cyber security have been treated as separate disciplines, with identity focusing on authentication, onboarding and access and cyber security focusing on networks, monitoring and threat response. That separation made sense when systems had clearer boundaries. The…
-
What CISOs need to get right as identity enters the agentic era
Tags: access, ai, ciso, conference, control, credentials, cybersecurity, defense, governance, identity, jobs, least-privilege, malicious, mfa, monitoring, phishing, risk, technology, toolWilcox and Adams are speaking at the CSO Cybersecurity Awards & Conference, May 1113. Reserve your place.As a result, Adams says CISOs will increasingly need to adopt an identity-centric security architecture and there are several key tenets to consider.Build a strong foundation before layering on complexity. The instinct when modernizing an identity program, says Adams, is…
-
Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover
An administrative role meant for artificial intelligence (AI) agents within Microsoft Entra ID could enable privilege escalation and identity takeover attacks, according to new findings from Silverfort.Agent ID Administrator is a privileged built-in role introduced by Microsoft as part of its agent identity platform to handle all aspects of an AI agent’s identity lifecycle operations…
-
Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting
CVE-2026-6770 let attackers fingerprint Firefox and Tor users, even in Private mode. Firefox 150 and Tor Browser 15.0.10 fixed it. A vulnerability, tracked as CVE-2026-6770, allowed attackers to fingerprint Firefox users, even in Private Browsing, and also impacted the Tor Browser. The flaw worked even when Tor’s New Identity feature was used, bypassing protections meant…
-
Is Your IAM Ready for AI?
e=4>Explore how AI is reshaping the security landscape”, uncover emerging threats, identity challenges, and the strategies needed to stay ahead. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/your-iam-ready-for-ai-a-31509
-
Your IAM was built for humans, AI agents don’t care
Identity and access management was built for a simpler world. One where the hardest problem was a human logging in, and where >>Who are you?<< was sufficient to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/27/ai-agents-access-control-model/
-
Your IAM was built for humans, AI agents don’t care
Identity and access management was built for a simpler world. One where the hardest problem was a human logging in, and where >>Who are you?<< was sufficient to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/27/ai-agents-access-control-model/