Tag archive

Identity security

Reporting on authentication, authorization, access review, and the controls around account security.

Access control, authentication, and account ownership.

Use this archive to follow a cross-cutting theme that appears across more than one category or topic.

20 published stories linked to this tag.

Browse all sections
CVE-2026-32202 Turns Shortcuts Into Risk
SecurityRansomware and Breaches
CISA’s latest KEV entry turns a Windows Shell flaw into a near-term patch priority because malicious shortcut files can expose credential material with little user action.
Maya NairApr 30, 202612 min read
Risk, resilience, and the systems companies rely on.Read story
SecurityIdentity Security
Cisco’s March advisory and April KEV activity kept the same message alive into this week: exposed SD-WAN control systems need upgrades, log review and tighter access right now.
Maya NairApr 29, 20266 min read
Risk, resilience, and the systems companies rely on.Read story
SecurityIdentity Security
The latest disclosures around Anthropic's Model Context Protocol point to a broader enterprise risk. The issue is not one bad plugin. It is that a fast-growing agent standard may be pushing insecure trust assumptions deep into the AI toolchain.
Maya NairApr 28, 20266 min read
Risk, resilience, and the systems companies rely on.Read story
SecurityIdentity Security
Enterprises are running more agent pilots, but the gap between experimenting and trusting those agents in production is widening into a concrete security problem.
Maya NairApr 27, 20264 min read
Risk, resilience, and the systems companies rely on.Read story
SecurityRansomware and Breaches
A newly exploited flaw in Nginx UI shows how quickly AI-connected management features can turn into a live server risk when core protections are skipped.
Maya NairApr 23, 20263 min read
Risk, resilience, and the systems companies rely on.Read story
SecurityIdentity Security
Microsoft has moved Entra passkeys on Windows into public preview, giving organizations a way to use device-bound passkeys on personal and shared PCs without relying on passwords.
Maya NairApr 21, 20263 min read
Risk, resilience, and the systems companies rely on.Read story