BeyondTrust Launches Identity Security Risk Assessment
The combination of diverse, but hyper-connected, identity landscapes–spanning cloud, hybrid, and on-premise environments–and the proliferation of identities, accounts, and entitlements has pushed effective identity security out of reach for most organizations. While identity is the connective tissue that enables modern work, it's also the vector attackers exploit most to breach organizations, with 90% of organizations experiencing an identity-related incident in the last year.
The new BeyondTrust Identity Security Risk Assessment quickly reveals hidden Paths to Privilege within an organization's existing environment. It analyzes key aspects of the identity infrastructure and provides an initial set of findings to help guide security decisions.
Key features of the new Identity Security Risk Assessment: Rapid Deployment: Connects to identity landscapes—including IdPs, cloud platforms, on-premises Active Directory, Entra ID, Okta and Ping configurations—in under an hour.
Connects to identity landscapes—including IdPs, cloud platforms, on-premises Active Directory, Entra ID, Okta and Ping configurations—in under an hour. Comprehensive Analysis: Uncovers the entire identity attack surface from an attacker's perspective within 24 hours.
Uncovers the entire identity attack surface from an attacker's perspective within 24 hours. Actionable Insights: Delivers a unified view of high-risk identities, unused accounts, and an understanding of how attackers could elevate privileges, facilitating informed decisions.
'At BeyondTrust, our mission is to fight every day to secure identities, intelligently remediate threats, and deliver dynamic access to empower and protect organizations around the world,' said Sam Elliott, SVP of Products at BeyondTrust. 'We understand many organizations are struggling to grasp their identity risk exposure, and to that end, our new, Identity Security Risk Assessment allows companies to better understand and identify potential identity risk, all without the costs normally associated with such services.'
The Identity Security Risk Assessment is powered by BeyondTrust's Identity Security Insights, a solution that aggregates identity data and employs AI-based detection capabilities to illuminate hidden Paths to Privilege and identity vulnerabilities. By offering this assessment service at no cost, BeyondTrust aims to democratize access to critical security insights, fostering a more resilient cybersecurity landscape.
Organizations can sign up for the free Identity Security Risk Assessment at: https://www.beyondtrust.com/products/identity-security-insights/assessment 0 0
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Channel Post MEA
2 days ago
- Channel Post MEA
BeyondTrust Expands Identity Security Insights Solution
BeyondTrust has announced the expansion of its Identity Security Insights solution to include Secrets Insights, a new capability designed to illuminate and secure the hidden attack surfaces created by secrets and non-human identities. As Agentic AI systems begin to autonomously interact with infrastructure, make decisions, and even provision access themselves, the hidden risks posed by unmanaged secrets and non-human identities become exponentially more dangerous. This launch comes on the completion of the initial class of Identity Security Risk Assessment engagements conducted across a wide range of industries and company sizes. The results are eye-opening: Dormant service accounts with privilege were found in over 70% of environments Overly permissive Entra Service Principals create direct pathways to Global Admin privileges, exposing entire Microsoft 365 environments to potential takeover Credentials reused across multiple service accounts by human admins, enabling a single compromised password to compromise numerous non-human accounts Low-privileged users can escalate to administrative access across Active Directory, Entra, AWS, Okta, and GitHub through hidden privilege escalation paths built on configuration oversights, federation, synchronization AD Service accounts bridge on-premises and cloud environments with Active Directory accounts holding privileged Entra roles, creating cross-platform attack vectors Ineffective GitHub repository access management, leading to uncontrolled secret access and unauthorized access to sensitive code, often accessible through personal Github accounts 'These identity infrastructure issues aren't just misconfigurations, they're invitations,' said Marc Maiffret, CTO at BeyondTrust. 'Our Identity Security Risk Assessment data shows that many organizations lack the complete story when it comes to their identity attack surface. For many, overlooked hygiene issues silently open the door to attackers. And with the rise of Agentic AI, the stakes have never been higher, especially as most organizations lack visibility into how compromised accounts can be leveraged to seize control of application secrets, which often carry elevated privileges.' The new Secrets Insights capability builds on the success of BeyondTrust's Identity Security Insights platform, which already provides deep visibility into Active Directory, Entra ID, AWS, Azure, Google Cloud Platform, Okta, and Ping Identity, and GitHub. Now, organizations can extend that same level of insight to secrets, such as API keys, service account credentials, tokens, and more, across hybrid and multi-cloud environments and their vaults. Key Benefits of Secrets visibility: Discovery of unmanaged secrets across cloud and on-prem environments Discovery of users with direct and indirect access to secrets Risk scoring and prioritization based on exposure and privilege level Integration with BeyondTrust Password Safe for automated remediation 'As organizations embrace automation and Agentic AI, securing the invisible layers of access — secrets, tokens, and service identities — will define the next frontier of identity security', said Maiffret. Secrets Insights will be available later this year. BeyondTrust continues to offer complimentary Identity Security Risk Assessments, often completed in less than 48 hours, to qualified organizations, helping them uncover hidden privilege and secrets risks and chart a path toward Zero Standing Privilege (ZSP) and Just-in-Time (JIT) access.
Channel Post MEA
07-08-2025
- Channel Post MEA
BeyondTrust Unveils Phantom Labs To Boost Identity Security Research
BeyondTrust has announced the formal launch of its dedicated cybersecurity research team, BeyondTrust Phantom Labs. The launch of Phantom Labs represents a strategic milestone in BeyondTrust's ongoing mission to advance identity security innovation, uncover emerging threats, foster industry collaboration, and help shape industry standards that empower defenders with actionable insights worldwide. Building on years of real-world threat analysis, vulnerability disclosures, and identity-focused security innovation, Phantom Labs is tasked with 'thinking like an attacker' to expose the ways threat actors escalate access and maintain control. With the addition of new research leadership and specialised hires, Phantom Labs is accelerating the company's ability to help defenders proactively understand, detect, and disrupt identity exploitation in increasingly complex hybrid and cloud environments. BeyondTrust's expanding research mission is focused on delivering key contributions to the global cybersecurity community: Original threat research and vulnerability discovery Guidance for defenders, including mitigation playbooks and hardening recommendations Collaboration with product teams to drive innovation across the BeyondTrust portfolio Phantom Labs formalises the work of BeyondTrust's existing security researchers, whose investigations have uncovered critical vulnerabilities and provided threat intelligence used in real-world incident response, including key intelligence that helped Okta investigate and contain a high-profile breach. Recent contributions include: Discovery of stealth privilege escalation risks in Microsoft Entra guest accounts Development of data science–driven detection models to identify session hijacking Release of the paths to privilege research framework, now integrated into BeyondTrust's platform Ongoing collaboration with the Adventures of Alice & Bob podcast to help educate the market about unknown risks and contribute to the global cybersecurity community. To further accelerate BeyondTrust's identity security innovation and research momentum, BeyondTrust has made strategic new hires and elevated key internal experts into critical roles: Kinnaird McQuade , an industry leading expert in cloud identity security, has joined BeyondTrust as Chief Security Architect. McQuade's security research has produced popular open-source tools including Cloudsplaining, which has been downloaded more than 40 million times. This work has helped shape how modern security teams identify and contain attacks like data exfiltration, lateral movement and privilege escalation, particularly in hybrid and cloud environments where identity is the new perimeter. , an industry leading expert in cloud identity security, has joined BeyondTrust as Chief Security Architect. McQuade's security research has produced popular open-source tools including Cloudsplaining, which has been downloaded more than 40 million times. This work has helped shape how modern security teams identify and contain attacks like data exfiltration, lateral movement and privilege escalation, particularly in hybrid and cloud environments where identity is the new perimeter. Fletcher Davis, a leading offensive security researcher and red team specialist, will lead Phantom Labs. Davis brings extensive experience in simulating advanced threat actor behavior, uncovering cross-domain identity risks, and exposing hidden paths to privilege in complex enterprise environments. BeyondTrust's research momentum sits under the overall direction of Marc Maiffret, Chief Technology Officer at BeyondTrust and pioneering force in vulnerability research and cybersecurity innovation. With decades of experience in offensive and defensive security, including discovering some of the first major Microsoft vulnerabilities and co-founding one of the earliest vulnerability management platforms, Maiffret provides a uniquely attacker-informed perspective to the company's mission. ''Think like a hacker.' That mindset shaped my first security startup over 25 years ago, where we helped define Vulnerability Management and built one of the first commercial security research teams,' says Marc Maiffret, CTO, BeyondTrust. 'Great security products require more than customer insight. They need research teams anticipating threats before they emerge. Traditional PAM solutions lag in addressing complex, cross-domain attack paths. And Identity Security isn't a feature you bolt on. It demands a purpose-built platform, led by research. BeyondTrust delivers that with Pathfinder and Phantom Labs—a platform purpose-built to secure identities and access, powered by a team uncovering tomorrow's threats today.'
TECHx
06-08-2025
- TECHx
Phantom Labs Boosts BeyondTrust's Cyber Research
Home » Emerging technologies » Cyber Security » Phantom Labs Boosts BeyondTrust's Cyber Research BeyondTrust, has announced the official launch of its dedicated cybersecurity research team, BeyondTrust Phantom Labs™. This move marks a significant milestone in BeyondTrust's mission to enhance identity security and advance threat analysis. Phantom Labs aims to uncover emerging cyber threats, support industry collaboration, and shape global security standards. The team builds on years of experience in real-world threat analysis, vulnerability disclosures, and identity-focused innovation. According to BeyondTrust, Phantom Labs will adopt an attacker mindset to reveal how threat actors escalate access and maintain control. The company also revealed that new research leadership and strategic hires will accelerate this effort. The research team is expected to help defenders proactively detect and disrupt identity exploitation across hybrid and cloud environments. BeyondTrust's research goals include:• Original threat research and vulnerability discovery• Defender guidance such as mitigation playbooks • Driving innovation across the BeyondTrust product portfolio The company reported that Phantom Labs formalizes the work of existing researchers who have helped uncover critical vulnerabilities and contributed to real-world incident response. One such case involved key intelligence provided to Okta during a high-profile security breach. Recent research contributions include:• Discovery of stealth privilege escalation risks in Microsoft Entra guest accounts• Development of detection models to identify session hijacking • Integration of the Paths to Privilege research framework into the BeyondTrust platform BeyondTrust also continues to collaborate with the Adventures of Alice & Bob podcast to raise awareness about cybersecurity risks. To strengthen Phantom Labs, the company announced several strategic appointments. Kinnaird McQuade has joined as Chief Security Architect. He is known for developing Cloudsplaining, a popular open-source tool that supports detection of data exfiltration and privilege escalation in hybrid and cloud environments. Fletcher Davis has been appointed to lead Phantom Labs. He is a red team expert with deep experience in simulating threat actor behavior and exposing hidden identity risks. The company's research strategy is overseen by Marc Maiffret, BeyondTrust's Chief Technology Officer. Maiffret is a veteran in cybersecurity and vulnerability research. He helped pioneer the first commercial security research teams more than 25 years ago. Maiffret stated that traditional PAM solutions often fall short when dealing with complex, cross-domain attack paths. He emphasized that identity security requires a dedicated platform backed by research. BeyondTrust says it is meeting that challenge with its Pathfinder platform and Phantom Labs, combining purpose-built tools with deep threat analysis to secure identities and access across modern enterprise environments.
