惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

云风的 BLOG
云风的 BLOG
Help Net Security
Help Net Security
Y
Y Combinator Blog
WordPress大学
WordPress大学
D
DataBreaches.Net
N
Netflix TechBlog - Medium
U
Unit 42
爱范儿
爱范儿
MyScale Blog
MyScale Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
博客园 - 司徒正美
Google DeepMind News
Google DeepMind News
D
Docker
H
Help Net Security
Stack Overflow Blog
Stack Overflow Blog
宝玉的分享
宝玉的分享
博客园_首页
Microsoft Security Blog
Microsoft Security Blog
Engineering at Meta
Engineering at Meta
Know Your Adversary
Know Your Adversary
P
Privacy & Cybersecurity Law Blog
P
Proofpoint News Feed
T
Tenable Blog
S
Schneier on Security
V
Vulnerabilities – Threatpost
V
V2EX
T
Tor Project blog
Security Latest
Security Latest
S
Securelist
G
Google Developers Blog
NISL@THU
NISL@THU
Schneier on Security
Schneier on Security
Webroot Blog
Webroot Blog
小众软件
小众软件
Google Online Security Blog
Google Online Security Blog
阮一峰的网络日志
阮一峰的网络日志
W
WeLiveSecurity
IT之家
IT之家
I
InfoQ
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
月光博客
月光博客
I
Intezer
T
The Blog of Author Tim Ferriss
C
Cisco Blogs
博客园 - 【当耐特】
The GitHub Blog
The GitHub Blog
Cloudbric
Cloudbric
Scott Helme
Scott Helme
The Cloudflare Blog
L
LINUX DO - 热门话题

Cybersecurity Dive - Latest News

Dozens of Red Hat npm packages targeted in supply chain attack Turning tension into collaboration: How CIOs and CISOs can lead together Trump signs EO seeking early government access to powerful AI models Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators Without strong governance, companies put credit ratings at risk in AI era CISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitation How Canva scaled to 260+M users while elevating security and productivity Top 4 data security best practices for the AI-enabled enterprise CISA urges security teams to check for software development compromises How CISOs can manage sovereign-cloud security risks IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities Enterprise data is creeping its way into shadow AI tools Coordinated operation takes down Glassworm botnet Leading AI models are more vulnerable to malicious prompts than vendors claim Iranian government, not hacktivist group, breached LA Metro system, security firm says FBI warns about PhaaS platform used to access Microsoft 365 environments Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages New York regulator calls for additional cyber mitigation amid heightened threat environment CISA asks cybersecurity community to alert it to vulnerability exploitation Grafana Labs links GitHub environment breach to TanStack npm supply chain attack 7-Eleven hit by data breach Microsoft disrupts cybercrime operation that hid behind legitimate software Compromised coding tool helped hackers breach thousands of GitHub repositories Telecom sector launches its own private ISAC Patch bypass allows hackers to exploit prior flaw in SonicWall SSL-VPN Grafana Labs says hacker gained access to codebase through leaked token How a government contest launched a revolution in AI-based bug hunting Attackers exploit critical flaw in Cisco Catalyst SD-WAN Controller MSPs need AI to fight AI-fueled cyberthreats: Guardz More money is going to physical security, but it’s often CISOs that oversee it: EY Frontier AI models reap rapid discovery of security vulnerabilities West Pharmaceutical starts restoring operations after ransomware attack Foxconn confirms cyberattack affecting some North American facilities OpenAI launches Daybreak to combat cyber threats Canvas owner reaches ‘agreement’ with threat actors after data breach Guardrail Technologies launches Traffic Light for Code & AI™; first security technology to verify & secure AI code and the people creating it Identity takes center stage as a leading factor in enterprise cyberattacks AI and an absent government: Takeaways from RSAC 2026 Second Canvas data breach causes major disruptions for schools, colleges AI used to develop working zero-day exploit, researchers warn New cybersecurity industry alliance aims to lead US critical infrastructure protection Instructure confirms cybersecurity incident Anthropic’s Claude used in attempted compromise of Mexican water utility Businesses hide vast majority of ransomware attacks, report finds Palo Alto Networks warns state-linked cluster behind zero-day exploitation Businesses eager but unprepared for AI to transform their security strategies Iran-sponsored threat group behind false flag social engineering campaign NIST will test three major tech firms’ frontier AI models for cybersecurity risks Trellix investigating breach of source code repository CISA urges critical infrastructure firms to ‘fortify’ before it’s too late Critical vulnerability in cPanel leads to widespread exploitation New MOVEit vulnerabilities prompt urgent patch warning How OpenClaw’s agent skills become an attack surface White House questions tech industry on defensive AI use, cybersecurity resilience As email phishing evolves, malicious attachments decline and QR codes surge US and allies urge ‘careful adoption’ of AI agents PwC partners with Google Cloud to take on the managed security market US agencies promote zero-trust practices for operational technology networks CISA adds Microsoft, ConnectWise vulnerabilities to active exploitation catalog State CISOs losing confidence in ability to manage cyber risks ‘Fundamental tension’ undermines manufacturers’ cybersecurity North Korea-linked actor targets Web3 execs in social-engineering campaign US, UK authorities warn that Firestarter backdoor malware survives patching Major critical infrastructure supplier reports cyberattack When security becomes the attack surface: Why endpoint protection must evolve Hasbro expects March cyberattack to impact second-quarter revenue AI-written software creates hassles for wary security teams Iran-nexus threat groups refine attacks against critical infrastructure China disguises cyberattacks with ‘covert network’ botnets, US and allies warn Trump’s CISA director pick withdraws after tumultuous nomination Phishing — sometimes with AI’s help — topped initial-access methods in Q1, Cisco says Microsoft SharePoint vulnerability widely exposed across multiple countries CISA urges security teams to view environments following axios compromise Big banks seek to ease security worries as AI push accelerates CISA confirms exploitation of 3 more Cisco networking device vulnerabilities Stellantis teams with Microsoft to strengthen digital capabilities Vulnerability exploitation surges often precede disclosure, offering possible early warnings Vercel systems targeted after third-party tool compromised Beyond IT: Cybersecurity is a strategic business risk TP-Link routers face exploitation attempt linked to high-severity flaw US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms CIOs fret over rising security concerns amid AI adoption CISA cancels prestigious summer internships, citing government shutdown NIST limits vulnerability analysis as CVE backlog swells Medium-severity flaw in Microsoft SharePoint exploited FCC exempts Netgear from foreign router ban FCC signals continued commitment to Cyber Trust Mark program Brute-force cyberattacks originating in Middle East surge in Q1 CISOs see gaps in their incident response playbooks US, Indonesia shut down ‘sophisticated’ phishing kit Nearly 4K industrial control devices vulnerable to Iran-linked hacking campaign Stryker warns of earnings fallout from March cyberattack NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat CISA adds second critical flaw in Ivanti EPMM to exploited vulnerabilities catalog US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure Iran-linked hackers target water, energy in US, FBI and CISA warn React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data Olympic Games, FIFA World Cup offer huge platforms, rich cyberattack surface Threat cluster launches extortion campaign using social engineering CISA’s vulnerability scans, field support on chopping block in Trump budget
Identity is the new perimeter as rapid NHI proliferation threatens visibility and control
2026-05-11 · via Cybersecurity Dive - Latest News

There was a time—as recently as a decade ago—when human users far outnumbered non-human identities (NHIs). By 2020, though, cloud-native architectures, DevOps pipelines and widespread automation had gone mainstream, and the average company had 10x more NHIs than human identities. Now, service accounts, bots, API keys, OAuth tokens, digital certificates, secrets and other machine identities may outnumber humans by 50 to 1 in a large organization, and their numbers continue to explode.

Rapid adoption of agentic AI is upping the ante. Gartner predicts that by 2028, at least 15% of daily workplace decision-making will be done by AI agents, and these agents rely on NHIs to access systems and software across the organization—including those housing confidential, sensitive and regulated data. By definition, agents act autonomously, chaining tools together, spawning subprocesses and interacting with other agents, with limited human oversight. While human identities are typically managed through a centralized identity governance and administration (IGA) platform, NHIs are linked to diverse assets across the enterprise technology ecosystem, creating a highly fragmented architecture and making it challenging for security teams to maintain visibility and control.

“Ephemeral identities and those associated with AI agents are directly contributing to the expansion of the attack surface and introducing new risks,” says Brad Bowers, Field Chief Information Security Officer (Global) at SHI. “We expect organizations will move to acquire tools to give them visibility into how these identities are being leveraged, what access they have, and whether or not they’ve been tampered with.”

Today’s most commonly-deployed identity security solutions weren’t designed to discover and manage NHIs at enterprise scale. Although comprehensive lifecycle management is needed to mitigate the growing risks that NHIs pose, no vendor yet offers a single, holistic solution that can enforce best practice-based governance across an organization’s entire NHI ecosystem.

This means that full-lifecycle NHI governance will require integrating multiple existing identity-related solutions, and organizations may need to augment these capabilities with specialized NHI discovery and management tools, too.

NHIs represent a significant—and growing—attack vector

With their recent and rapid proliferation, frequent use of shared or unencrypted credentials and lack of robust governance, NHIs are a highly attractive target for threat actors. Compromising a service account, for instance, can readily enable lateral movement because these accounts often have far-reaching access, elevated privileges and little monitoring by security teams.

NHIs are already been widely exploited by real-world attackers. One recent survey of security leaders found that 40% of organizations had experienced an NHI-related incident within the past year, and—even more worryingly—32% said they could not tell whether they had or not. Large-scale, high-profile breaches involving NHIs include successful attacks on Cloudflare, AWS, Snowflake and the AI development platform HuggingFace.

With agentic AI adoption expected to further accelerate, it’s likely that we’ll see many more of these kinds of incidents in the not-too-distant future.

A mounting wave of investment

Existing cybersecurity vendors and NHI security-focused startups see this challenge as a significant market opportunity. Investors are pouring money into emerging innovators working to develop full NHI-lifecycle management solutions. Secrets management platform GitGuardian was recently awarded $50 million in Series C funding, while the NHI discovery and risk analysis engine Oasis received $120 million in March to expand its product’s capabilities further across the NHI lifecycle.

Major acquisitions also signal that NHI and agentic AI security are now top-tier cybersecurity priorities. The flagship deal in which Palo Alto Networks bought CyberArk for $25 billion dollars in cash and stock options indicates that the industry’s biggest players no longer think of machine identity and agentic AI security as niche concerns.

Analysts predict that 2026 will see more high-profile acquisitions as traditional identity and access management (IAM), privileged access management (PAM) and IGA vendors compete to add more NHI-management capabilities to their platforms.

Boosting NHI security demands a strategic approach

With the NHI vendor landscape increasingly crowded and fast-changing—and no one-size-fits-all solution to be had—there’s strong demand for expertise in integrating NHI governance capabilities across clouds, SaaS ecosystems and cybersecurity tool stacks.

“We already know what identity security best practices are for people,” says Bowers. “Things like multi-factor and passwordless authentication, just-in-time access, and adhering to the least-privilege principle are key. The challenge now is extending these protections to AI agents and other kinds of software, which don’t always behave in the same way humans do.”

In general, security teams should:

  • Take an architectural approach to NHI security. This means embedding security controls and mechanisms to enforce policies directly into the foundational fabric of your IT and security infrastructure. You’ll need the right tooling to discover, manage and govern NHIs across your entire technology ecosystem.
  • Take advantage of automation as much as you can. Automating NHI provisioning, credentialing and decommissioning can help eliminate “orphan” machine identities, which ensuring that permissions are always revoked when they’re no longer needed.
  • Focus on full-lifecycle NHI governance, which will likely require integrations. To gain the capabilities needed to protect NHIs at scale, you’ll almost certainly need to integrate exsiting secrets management, IGA, PAM, IAM and cloud identity and entitlements management (CIEM)solutions with specialized NHI discovery and management tools.

The sheer volume of NHIs, along with the fact that effective governance requires an integrated, end-to-end approach—not just tooling—means that having the right partner, one who can design and operate an identity fabric across your entire environment, is critical for mitigating NHI-related security risk. In particular, someone with expertise across clouds, SaaS, identity security platforms and AI implementation will be able to help you transform the complexities of machine identity security into a set of repeatable processes that can deliver the results you need to satisfy your board, regulators, investors and customers—and set your own mind at ease.

Interested in learning more about today’s biggest cybersecurity challenges and how industry leaders are approaching them? Download SHI and Stratascale’s 2026 Cyber Trends Report today.