access management

ETSI sets security requirements for AI data centers and cloud platforms

access management, AI, cybersecurity, ETSI, identity management, News, resilience, security standard /

ETSI sets security requirements for AI data centers and cloud platforms 2026-06-04 at 09:26 By Anamarija Pogorelec ETSI has published TS 104 033, a technical specification that defines security requirements for AI computing platforms. The specification establishes a security framework for platforms used to host AI applications in data center and edge computing environments, covering […]

ETSI sets security requirements for AI data centers and cloud platforms Read More »

Microsoft Entra pushes passkeys, tightens identity security

access management, authentication, credentials, identity management, Microsoft, Microsoft Entra ID, News /

Microsoft Entra pushes passkeys, tightens identity security 2026-06-02 at 15:47 By Anamarija Pogorelec Microsoft has released multiple identity and network access capabilities for Entra, its family of identity and network access products that help organizations implement a zero trust security strategy, over the last 30 days. Features reaching general availability Identity and authentication updates Phishing-resistant

Microsoft Entra pushes passkeys, tightens identity security Read More »

Manage machine identities: The hidden privileged access layer you need to manage

access management, AI, Delinea, Don't miss, Expert analysis, Expert corner, Hot stuff, identity management, News, Non Human Identities, opinion /

Manage machine identities: The hidden privileged access layer you need to manage 2026-05-26 at 08:37 By Help Net Security Why are machine identities becoming the majority of “things with access”? Every automation, integration, and workload needs a way to authenticate and the right permissions to act. That quiet requirement has created a massive population of

Manage machine identities: The hidden privileged access layer you need to manage Read More »

Your IAM was built for humans, AI agents don’t care

access management, AI, authentication, Curity, cybersecurity, Expert analysis, identity management, News, Non Human Identities, opinion /

Your IAM was built for humans, AI agents don’t care 2026-04-27 at 11:18 By Help Net Security Identity and access management was built for a simpler world. One where the hardest problem was a human logging in, and where “Who are you?” was sufficient to decide what someone could do. That model served enterprises well

Your IAM was built for humans, AI agents don’t care Read More »

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521)

access management, CISA, CVE, Don't miss, enterprise, F5 Networks, financial industry, Government, Hot stuff, News, vulnerability /

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) 2026-03-28 at 11:30 By Zeljka Zorz A critical unauthenticated remote code execution vulnerability (CVE-2025-53521) in F5’s BIG-IP Access Policy Manager (APM) solution is under active exploitation, the US Cybersecurity and Infrastructure Security Agency warned on Friday. CISA added the flaw to its Known Exploited Vulnerabilities

Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) Read More »

ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites

access controls, access management, data theft, Don't miss, Hot stuff, misconfiguration, News, Salesforce /

ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites 2026-03-11 at 20:28 By Zeljka Zorz Salesforce customers have, once again, been targeted by the ShinyHunters group – or, at least, it’s what the group claims. Attackers modified and abused benign tool On Saturday, Saleforce confirmed that its security team has identified an attack campaign by

ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites Read More »

Who’s on the other end? Rented accounts are stress-testing trust in gig platforms

access management, cybersecurity, fraud, identity verification, News, report, TransUnion /

Who’s on the other end? Rented accounts are stress-testing trust in gig platforms 2026-01-16 at 08:02 By Anamarija Pogorelec Fraud has become a routine part of gig work for many earners, and the ways workers respond are creating new security problems for platforms. A recent TransUnion study of U.S. gig workers shows broad exposure to

Who’s on the other end? Rented accounts are stress-testing trust in gig platforms Read More »

Rethinking OT security for project heavy shipyards

access control, access management, cyber resilience, cybersecurity, Damen, Don't miss, Features, Hot stuff, maritime industry, News, threat /

Rethinking OT security for project heavy shipyards 2026-01-12 at 09:09 By Mirko Zorz In this Help Net Security interview, Hans Quivooij, CISO at Damen Shipyards Group, discusses securing OT and ICS in the shipyard. He outlines how project-based operations, rotating contractors, and temporary systems expand the threat surface and complicate access control. Quivooij also covers

Rethinking OT security for project heavy shipyards Read More »

The next big IT security battle is all about privileged access

access management, enterprise, identity management, Leostream, News, predictions /

The next big IT security battle is all about privileged access 2025-12-26 at 07:01 By Help Net Security Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in 2026 driven by new realities of cybersecurity, hybridization, AI, and more. Passwordless moves from pilot to production In 2026, passwordless authentication will

The next big IT security battle is all about privileged access Read More »

What security leaders should watch for when companies buy or sell a business

access management, Artificial Intelligence, Compliance, Concentric AI, cybersecurity, data security, Don't miss, News, risk, Video /

What security leaders should watch for when companies buy or sell a business 2025-12-05 at 08:59 By Help Net Security In this Help Net Security video, Lane Sullivan SVP, CISO and Strategy Officer at Concentric AI, explains what security leaders should think about during mergers, acquisitions, and divestitures. Sullivan talks about the types of risk

What security leaders should watch for when companies buy or sell a business Read More »

Securing agentic AI with intent-based permissions

access management, agentic AI, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, identity management, News, opinion, Token Security, zero trust /

Securing agentic AI with intent-based permissions 2025-10-10 at 08:31 By Help Net Security When seatbelts were first introduced, cars were relatively slow and a seatbelt was enough to keep drivers safe in most accidents. But as vehicles became more powerful, automakers had to add airbags, crumple zones, and (eventually) adaptive driver assistance systems that anticipate

Securing agentic AI with intent-based permissions Read More »

The AI security crisis no one is preparing for

access management, Artificial Intelligence, Curity, cybersecurity, Don't miss, Features, Hot stuff, monitoring, News, Non Human Identities, security controls, strategy, threat /

The AI security crisis no one is preparing for 2025-08-20 at 08:03 By Mirko Zorz In this Help Net Security interview, Jacob Ideskog, CTO of Curity, discusses the risks AI agents pose to organizations. As these agents become embedded in enterprise systems, the potential for misuse, data leakage, and unauthorized access grows. Ideskog warns that

The AI security crisis no one is preparing for Read More »

AWS CISO explains how cloud-native security scales with your business

access management, Amazon Web Services, Artificial Intelligence, AWS, CISO, Cloud, cloud security, cybersecurity, Don't miss, Features, Hot stuff, News, strategy /

AWS CISO explains how cloud-native security scales with your business 2025-08-13 at 09:01 By Mirko Zorz In this Help Net Security interview, Amy Herzog, CISO at AWS, discusses how cloud-native security enables scalable, flexible protection that aligns with how teams build in the cloud. She explains the Shared Responsibility Model and the tools and processes

AWS CISO explains how cloud-native security scales with your business Read More »

From legacy to SaaS: Why complexity is the enemy of enterprise security

access management, authentication, Bridge IT, CISO, cybersecurity, digital transformation, Don't miss, enterprise, Features, Hot stuff, identity verification, MFA, News, SaaS, security awareness, strategy, tips, zero trust /

From legacy to SaaS: Why complexity is the enemy of enterprise security 2025-08-11 at 08:32 By Mirko Zorz In this Help Net Security interview, Robert Buljevic, Technology Consultant at Bridge IT, discusses how the coexistence of legacy systems and SaaS applications is changing the way organizations approach security. He explains why finding the right balance

From legacy to SaaS: Why complexity is the enemy of enterprise security Read More »

Cybersecurity essentials for the future: From hype to what works

access management, CISO, cyber resilience, cyber risk, cybersecurity, DirectDefense, Don't miss, enterprise, Features, Hot stuff, News, Risk Management, Secure Code Warrior, strategy, tips /

Cybersecurity essentials for the future: From hype to what works 2025-07-02 at 09:03 By Mirko Zorz Cybersecurity never stands still. One week it’s AI-powered attacks, the next it’s a new data breach, regulation, or budget cut. With all that noise, it’s easy to get distracted. But at the end of the day, the goal stays

Cybersecurity essentials for the future: From hype to what works Read More »

Hanko: Open-source authentication and user management

access management, authentication, Don't miss, GitHub, Hanko, Hot stuff, News, open source, software /

Hanko: Open-source authentication and user management 2025-05-19 at 07:32 By Mirko Zorz Hanko is an open-source, API-first authentication solution purpose-built for the passwordless era. “We focus on helping developers and organizations modernize their authentication flows by migrating users towards passkeys, while still supporting all common authentication methods like email/password, MFA, OAuth, as well as SAML

Hanko: Open-source authentication and user management Read More »

The shift to identity-first security and why it matters

access management, Artificial Intelligence, BeyondID, CISO, cybersecurity, Don't miss, Features, Hot stuff, News /

The shift to identity-first security and why it matters 2025-04-07 at 08:10 By Mirko Zorz In this Help Net Security interview, Arun Shrestha, CEO at BeyondID, discusses how AI is transforming secure access management for both attackers and defenders. He discusses the shift toward identity-first security, and the role of contextual and continuous authentication in

The shift to identity-first security and why it matters Read More »

How CISOs can balance security and business agility in the cloud

access management, CISO, Cloud, cloud security, Cloudera, cybersecurity, Don't miss, Features, Hot stuff, News, opinion /

How CISOs can balance security and business agility in the cloud 2025-02-17 at 08:03 By Mirko Zorz In this Help Net Security interview, Natalia Belaya, CISO at Cloudera, discusses common misconceptions about cloud security, the balance between protection and business agility, and overlooked risks that CISOs should prioritize. Belaya also offers practical strategies for integrating

How CISOs can balance security and business agility in the cloud Read More »

Keycloak: Open-source identity and access management

access management, Don't miss, GitHub, Hot stuff, identity management, News, open source, software /

Keycloak: Open-source identity and access management 2024-12-12 at 06:04 By Help Net Security Keycloak is an open-source project for identity and access management (IAM). It provides user federation, strong authentication, user management, authorization, and more. Keycloak is based on standard protocols and supports OpenID Connect, OAuth 2.0, and SAML. Single Sign-On: Users authenticate through Keycloak

Keycloak: Open-source identity and access management Read More »

Active Directory compromise: Cybersecurity agencies provde guidance

access management, Active Directory, Don't miss, enterprise, guide, Hot stuff, identity management, intrusion detection, News, tips /

Active Directory compromise: Cybersecurity agencies provde guidance 2024-09-26 at 17:31 By Zeljka Zorz Active Directory (AD), Microsoft’s on-premises directory service for Windows domain networks, is so widely used for enterprise identity and access management that compromising it has become almost a standard step in cyber intrusions. “Active Directory is susceptible to compromise due to its

Active Directory compromise: Cybersecurity agencies provde guidance Read More »

Scroll to Top