The life and death of an AI agent: Identity security lessons from the human experience
AI agents are on the rise. They can spin up, act independently, use tools, and make decisions—often without real-time human oversight. They promise incredible productivity but also introduce new...
Read Blog
CyberArk earns Wiz partner award for advancing cloud identity innovation
Cloud complexity is growing. So are the risks—and the opportunities. As organizations scale their infrastructure across hybrid environments to innovate quickly, security strategies must evolve...
Read Blog
Illusion of control: Why securing AI agents challenges traditional cybersecurity models
Enterprise security teams commonly focus on controlling AI agent conversations through prompt filters and testing edge cases to prevent unauthorized information access. While these measures...
Read Blog
Responding to ToolShell: A Microsoft SharePoint zero-day vulnerability
What is the ToolShell exploit? A newly discovered exploit, “ToolShell,” is fueling a wave of targeted attacks against on-premises Microsoft SharePoint servers. The zero-day exploit chains two...
Read Blog
Modern application control, done right with least privilege
When attackers gain access to a single endpoint—like a developer’s workstation or an HR system—it’s often game over. With some skill and patience, that foothold can escalate into full-blown...
Read Blog
Developers fly the plane: AI guardrails for secure cloud innovation
Developers now chart courses through environments as dynamic and unpredictable as open skies, plotting efficient courses through shifting clouds of technology to reach ambitious goals....
Read Blog
How the 16 billion password leak impacts your security strategy
The June 2025 disclosure that over 16 billion passwords were leaked has raised significant concerns in the digital community. Reports suggest that many of these credentials are recycled from...
Read Blog
Identity security at inception: A CISO’s guide to proactive protection
Modern enterprises are facing an identity explosion. Fueled by cloud adoption, DevOps acceleration, and now agentic AI, the number of human and machine identities is growing faster than most...
Read Blog
Scattered Spider Unmasked: How an identity-focused APT is redefining cyber threats
Scattered Spider has emerged as one of the most disruptive advanced persistent threats in recent years, breaching major organizations across telecom, gaming, transportation, and retail. In the...
Read Blog
The quantum-AI collision: What CISOs must do now to stay ahead
Technology is moving at the speed of light, and two forces—quantum computing and AI agents—are poised to shake up cybersecurity. We’re not talking about some far-off future; this is happening now....
Read Blog
C4 Bomb: Blowing Up Chrome’s AppBound Cookie Encryption
In July 2024, Google introduced a new feature to better protect cookies in Chrome: AppBound Cookie Encryption. This new feature was able to disrupt the world of infostealers, forcing the malware...
Read Blog
How agentic AI could transform enterprise workflows: Insights from MIT GenAI Lab
The line between human and machine is blurring—and it’s not a question of whether machines can do more, but how far we’re willing to let them go. The frontier lies in tackling the chaos and...
Read Blog
Machine identity mayhem: The volume, variety, velocity challenge
Machine identities—like the API keys, certificates, and access tokens that secure machine-to-machine connections—are swarming businesses. Yet, many teams still reach for manual tools while their...
Read Blog
Post-quantum cryptography (PQC): how to build resilience while padlocks still work
This blog is the second part of a two-part series on post-quantum cryptography (PQC). In Part 1, we explored how the Harvest Now, Decrypt Later (HNDL) strategy has moved from crypto-conspiracy...
Read Blog
