Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Often overlooked, identities are prime targets for bad actors. In December 2024, a compromised API key in the BeyondTrust Remote Support SaaS environment was enough to cause a privilege escalation attack. The year before, Microsoft hit the headlines as an SAS token leak exposed over 38TB of sensitive data. The good news is that simplifying user access and eliminating security risks from standing privileges has never been more achievable thanks to the right identity lifecycle management (ILM) tools.

A hacker intercepts or alters data between two parties in man-in-the-middle attacks, which account for 19% of breaches. Data, money and reputation are at stake in the MITM attacks.

Explore the latest Active Directory security best practices for 2025. Learn how to prevent AD attacks with a checklist, tips, and expert tools.

In this episode of Security Matters, host David Puner sits down with Marene Allison, former Chief Information Security Officer (CISO) of Johnson & Johnson, for a candid and wide-ranging conversation on trust, identity, and leadership in cybersecurity. From securing global vaccine supply chains during the COVID-19 pandemic to navigating the rise of AI and machine identities, Marene shares hard-earned insights from her decades-long career in national security and the private sector.

If the mere mention of identity governance and administration (IGA) stresses you out, you’re in good company. Managing digital identities and access privileges is a significant challenge that only grows more difficult as cloud adoption accelerates, and environments and threats become increasingly complex. Today, many organizations struggle to support the three key IGA business drivers: compliance, lifecycle management, and security.

The identity is the main attack vector for cybercriminals, with cybercriminals using stolen identity to infiltrate the organization, move laterally and vertically throughout the organization, and extract data, deploy ransomware, establish backdoors, and cause major service disruptions. All with long term impact to organizations.