Post Tag: Secrets

Breach Analysis

5 Non-Human Identity Breaches That Workload IAM Could Have Prevented

Each breach exploited a gap in how workloads authenticate and access resources.

Dan Kaplan

Apr 2025

5 min read

Breach Analysis

GitHub Action tjactions/changed-files Supply Chain Breach Exposes NHI Risks in CI/CD

Long-lived credentials and secrets fueled the attack.

Dan Kaplan

Mar 2025

4 min read

Best Practices

How to Stop Expired Secrets from Disrupting Your Operations

Credential expiration is more than an SSL/TLS certificate problem.

Dan Kaplan

Mar 2025

5 min read

Industry Insights

Secrets Management vs. Access Management: What You Need to Know

The distinction is stark: One stores credentials for non-human identities while the other enforces real-time policies to control access.

Apurva Davé

Dec 2024

3 min read

Breach Analysis

Preventing Stale Non-Human Identity Security: Lessons from the Schneider Electric Breach

A ransom demand in baguettes exposed poor practices related to a hijacking of the company's internal systems.

Dan Kaplan

Nov 2024

3 min read

Resources

Introducing the 2024 Non-Human Identity Security Report

In a first-of-its-kind effort, we asked 110 IT and security professionals how they're addressing the threat and enterprise repercussions of non-human identities.

Dan Kaplan

Sep 2024

2 min read

Industry Insights

A Human’s Guide to Non-Human Identities (NHIs)

As apps and service accounts proliferate, robust management is key to maintaining automated, scalable, and resilient IT environments.

Dan Kaplan

Aug 2024

8 min read

Best Practices

How to Advance Breach Protection Against Non-Human Identity Threats in Workloads (Slide Show)

Sticky note security now plagues application and service connections, necessitating a shift to more mature workload access safeguards.

Dan Kaplan

Jun 2024

2 min read

Industry Insights

Credential and Secrets Theft: Insights from the 2024 Verizon Data Breach Report

Stolen identity data remains part of a large percentage of breaches, according to the annual landmark report.

Dan Kaplan

Jun 2024

4 min read

Best Practices

Protecting Against Auth Secrets Breaches with Non-Human IAM

A string of recent compromises involving non-human identity credentials are putting organizations on high alert. Here's what you can do about it.

Dan Kaplan

May 2024

3 min read

Blog

Tag: Secrets

5 Non-Human Identity Breaches That Workload IAM Could Have Prevented

GitHub Action tjactions/changed-files Supply Chain Breach Exposes NHI Risks in CI/CD

How to Stop Expired Secrets from Disrupting Your Operations

Secrets Management vs. Access Management: What You Need to Know

Preventing Stale Non-Human Identity Security: Lessons from the Schneider Electric Breach

Introducing the 2024 Non-Human Identity Security Report

A Human’s Guide to Non-Human Identities (NHIs)

How to Advance Breach Protection Against Non-Human Identity Threats in Workloads (Slide Show)

Credential and Secrets Theft: Insights from the 2024 Verizon Data Breach Report

Protecting Against Auth Secrets Breaches with Non-Human IAM

Straight to Your Inbox