Latest news with #IdentitySecurityRiskAssessment
Techday NZ
05-08-2025
- Techday NZ
BeyondTrust launches Secrets Insights to tackle hidden identity risks
BeyondTrust has announced the expansion of its Identity Security Insights solution with the introduction of Secrets Insights, designed to address vulnerabilities arising from secrets and non-human identities. According to recent Identity Security Risk Assessments completed by BeyondTrust across various industries and organisational sizes, significant gaps have been discovered in current identity security postures. The findings reveal dormant service accounts with privilege in more than 70% of assessed environments. Additional issues include overly permissive Entra Service Principals, which can create direct pathways to Global Admin privileges, thereby endangering Microsoft 365 environments. The assessments also found that credentials are frequently reused across multiple service accounts by administrators, compounding the risks posed by a single compromised password. In the realm of privilege escalation, the report observes that low-privileged users are able to gain administrative access across Active Directory, Entra, AWS, Okta, and GitHub due to hidden escalation paths rooted in configuration errors, federation processes, and synchronisation. AD Service accounts that connect on-premises and cloud environments, particularly those with privileged Entra roles, were also identified as potential cross-platform attack vectors. The review highlighted further weaknesses, such as inadequate GitHub repository access management. This can lead to uncontrolled and unauthorised access to sensitive code and secrets, with personal GitHub accounts exacerbating the risk. "These identity infrastructure issues aren't just misconfigurations, they're invitations. Our Identity Security Risk Assessment data shows that many organisations lack the complete story when it comes to their identity attack surface. For many, overlooked hygiene issues silently open the door to attackers. And with the rise of Agentic AI, the stakes have never been higher, especially as most organisations lack visibility into how compromised accounts can be leveraged to seize control of application secrets, which often carry elevated privileges," said Marc Maiffret, CTO at BeyondTrust. Agentic AI systems, which autonomously interface with infrastructure and provision access, are predicted to amplify the risks associated with unmanaged secrets and non-human identities. As organisations adopt these AI-driven systems, the potential for abuse of hidden privileges and secrets grows, underscoring the need for enhanced oversight. The new Secrets Insights feature is intended to provide this visibility. It builds upon the existing capabilities of BeyondTrust's Identity Security Insights platform, which allows organisations to monitor identity risk across Active Directory, Entra ID, AWS, Azure, Google Cloud Platform, Okta, Ping Identity, and GitHub. With Secrets Insights, users can discover API keys, service account credentials, tokens, and similar assets across both cloud and on-premises setups, including within vaults, thereby mapping previously unmonitored access vectors. Key benefits Secrets Insights offers a number of core functions: discovery of unmanaged secrets throughout cloud and on-premises environments; identification of users with both direct and indirect access to these secrets; risk scoring and prioritisation focused on levels of exposure and privilege; and integration with BeyondTrust Password Safe, which automates remediation tasks. Maiffret commented on the next steps for the sector: "As organisations embrace automation and Agentic AI, securing the invisible layers of access - secrets, tokens, and service identities - will define the next frontier of identity security." Secrets Insights is scheduled to become available later this year. As part of its ongoing initiatives, BeyondTrust provides complimentary Identity Security Risk Assessments for qualified organisations. These assessments can be completed in under 48 hours and are intended to help organisations identify hidden privileges and secret-related risks, supporting steps towards reducing standing privilege and enabling just-in-time access.
Yahoo
04-08-2025
- Yahoo
BeyondTrust Research Exposes Hidden Privilege Threats: Secrets Are the New Identity Crisis Awaiting Agentic AI
New data from Identity Security Risk Assessments reveals critical blind spots in non-human identity posture BeyondTrust's latest solution brings secrets into full view, just as Agentic AI spins up at scale LAS VEGAS, Aug. 04, 2025 (GLOBE NEWSWIRE) -- BeyondTrust, the global leader in identity security protecting Paths to Privilege™, today announced the expansion of its Identity Security Insights™ solution to include Secrets Insights, a new capability designed to illuminate and secure the hidden attack surfaces created by secrets and non-human identities. As Agentic AI systems begin to autonomously interact with infrastructure, make decisions, and even provision access themselves, the hidden risks posed by unmanaged secrets and non-human identities become exponentially more dangerous. This launch comes on the completion of the initial class of Identity Security Risk Assessment engagements conducted across a wide range of industries and company sizes. The results are eye-opening: Dormant service accounts with privilege were found in over 70% of environments Overly permissive Entra Service Principals create direct pathways to Global Admin privileges, exposing entire Microsoft 365 environments to potential takeover Credentials reused across multiple service accounts by human admins, enabling a single compromised password to compromise numerous non-human accounts Low-privileged users can escalate to administrative access across Active Directory, Entra, AWS, Okta, and GitHub through hidden privilege escalation paths built on configuration oversights, federation, synchronization AD Service accounts bridge on-premises and cloud environments with Active Directory accounts holding privileged Entra roles, creating cross-platform attack vectors Ineffective GitHub repository access management, leading to uncontrolled secret access and unauthorized access to sensitive code, often accessible through personal Github accounts 'These identity infrastructure issues aren't just misconfigurations, they're invitations,' said Marc Maiffret, CTO at BeyondTrust. 'Our Identity Security Risk Assessment data shows that many organizations lack the complete story when it comes to their identity attack surface. For many, overlooked hygiene issues silently open the door to attackers. And with the rise of Agentic AI, the stakes have never been higher, especially as most organizations lack visibility into how compromised accounts can be leveraged to seize control of application secrets, which often carry elevated privileges.' The new Secrets Insights capability builds on the success of BeyondTrust's Identity Security Insights platform, which already provides deep visibility into Active Directory, Entra ID, AWS, Azure, Google Cloud Platform, Okta, and Ping Identity, and GitHub. Now, organizations can extend that same level of insight to secrets, such as API keys, service account credentials, tokens, and more, across hybrid and multi-cloud environments and their vaults. Key Benefits of Secrets Visibility: Discovery of unmanaged secrets across cloud and on-prem environments Discovery of users with direct and indirect access to secrets Risk scoring and prioritization based on exposure and privilege level Integration with BeyondTrust Password Safe for automated remediation 'As organizations embrace automation and Agentic AI, securing the invisible layers of access - secrets, tokens, and service identities - will define the next frontier of identity security', said Maiffret. Secrets Insights will be available later this year. BeyondTrust continues to offer complimentary Identity Security Risk Assessments, often completed in less than 48 hours, to qualified organizations, helping them uncover hidden privilege and secrets risks and chart a path toward Zero Standing Privilege (ZSP) and Just-in-Time (JIT) access. To learn more or schedule an Identity Security Risk Assessment, visit: About BeyondTrust BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders. BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners. Learn more at Follow BeyondTrust:X: Blog: LinkedIn: For BeyondTrust: Mike BradshawConnect Marketing for BeyondTrustP: (801) 373-7888E: mikeb@
Channel Post MEA
29-04-2025
- Business
- Channel Post MEA
BeyondTrust Launches Identity Security Risk Assessment
BeyondTrust has launched the new Identity Security Risk Assessment, a free service designed to illuminate identity attack surfaces, so organizations can better manage risk and reduce vulnerabilities. This initiative underscores BeyondTrust's commitment to support companies worldwide in understanding and mitigating identity-based security threats. The combination of diverse, but hyper-connected, identity landscapes–spanning cloud, hybrid, and on-premise environments–and the proliferation of identities, accounts, and entitlements has pushed effective identity security out of reach for most organizations. While identity is the connective tissue that enables modern work, it's also the vector attackers exploit most to breach organizations, with 90% of organizations experiencing an identity-related incident in the last year. The new BeyondTrust Identity Security Risk Assessment quickly reveals hidden Paths to Privilege within an organization's existing environment. It analyzes key aspects of the identity infrastructure and provides an initial set of findings to help guide security decisions. Key features of the new Identity Security Risk Assessment: Rapid Deployment: Connects to identity landscapes—including IdPs, cloud platforms, on-premises Active Directory, Entra ID, Okta and Ping configurations—in under an hour. Connects to identity landscapes—including IdPs, cloud platforms, on-premises Active Directory, Entra ID, Okta and Ping configurations—in under an hour. Comprehensive Analysis: Uncovers the entire identity attack surface from an attacker's perspective within 24 hours. Uncovers the entire identity attack surface from an attacker's perspective within 24 hours. Actionable Insights: Delivers a unified view of high-risk identities, unused accounts, and an understanding of how attackers could elevate privileges, facilitating informed decisions. 'At BeyondTrust, our mission is to fight every day to secure identities, intelligently remediate threats, and deliver dynamic access to empower and protect organizations around the world,' said Sam Elliott, SVP of Products at BeyondTrust. 'We understand many organizations are struggling to grasp their identity risk exposure, and to that end, our new, Identity Security Risk Assessment allows companies to better understand and identify potential identity risk, all without the costs normally associated with such services.' The Identity Security Risk Assessment is powered by BeyondTrust's Identity Security Insights, a solution that aggregates identity data and employs AI-based detection capabilities to illuminate hidden Paths to Privilege and identity vulnerabilities. By offering this assessment service at no cost, BeyondTrust aims to democratize access to critical security insights, fostering a more resilient cybersecurity landscape. Organizations can sign up for the free Identity Security Risk Assessment at: 0 0
Yahoo
29-04-2025
- Business
- Yahoo
BeyondTrust Launches Free Identity Security Risk Assessment to Reveal Hidden Paths to Privilege™
Complimentary new assessment--powered by Identity Security Insights--provides actionable recommendations to secure against vulnerabilities and help organizations tackle identity threats New assessment quickly reveals hidden Paths to Privilege, employing AI-based detection, and provides an initial set of prioritized findings to help guide security decisions SAN FRANCISCO, April 28, 2025 (GLOBE NEWSWIRE) -- (RSA Conference) – BeyondTrust, the global cybersecurity leader protecting Paths to Privilege, today launched the new Identity Security Risk Assessment, a free service designed to illuminate identity attack surfaces, so organizations can better manage risk and reduce vulnerabilities. This initiative underscores BeyondTrust's commitment to support companies worldwide in understanding and mitigating identity-based security threats. The combination of diverse, but hyper-connected, identity landscapes--spanning cloud, hybrid, and on-premise environments--and the proliferation of identities, accounts, and entitlements has pushed effective identity security out of reach for most organizations. While identity is the connective tissue that enables modern work, it's also the vector attackers exploit most to breach organizations, with 90% of organizations experiencing an identity-related incident in the last year. The new BeyondTrust Identity Security Risk Assessment quickly reveals hidden Paths to Privilege within an organization's existing environment. It analyzes key aspects of the identity infrastructure and provides an initial set of findings to help guide security decisions. Key features of the new Identity Security Risk Assessment: Rapid Deployment: Connects to identity landscapes—including IdPs, cloud platforms, on-premises Active Directory, Entra ID, Okta and Ping configurations—in under an hour. Comprehensive Analysis: Uncovers the entire identity attack surface from an attacker's perspective within 24 hours. Actionable Insights: Delivers a unified view of high-risk identities, unused accounts, and an understanding of how attackers could elevate privileges, facilitating informed decisions. 'At BeyondTrust, our mission is to fight every day to secure identities, intelligently remediate threats, and deliver dynamic access to empower and protect organizations around the world,' said Sam Elliott, SVP of Products at BeyondTrust. 'We understand many organizations are struggling to grasp their identity risk exposure, and to that end, our new, Identity Security Risk Assessment allows companies to better understand and identify potential identity risk, all without the costs normally associated with such services.' The Identity Security Risk Assessment is powered by BeyondTrust's Identity Security Insights, a solution that aggregates identity data and employs AI-based detection capabilities to illuminate hidden Paths to Privilege and identity vulnerabilities. By offering this assessment service at no cost, BeyondTrust aims to democratize access to critical security insights, fostering a more resilient cybersecurity landscape. Organizations can sign up for the free Identity Security Risk Assessment at: or visit BeyondTrust at booth #1327 at RSAC. About BeyondTrust BeyondTrust is the global cybersecurity leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders. BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners. Learn more at Follow BeyondTrust:X: Blog: LinkedIn: For BeyondTrust: Mike BradshawConnect Marketing for BeyondTrustP: (801) 373-7888E: mikeb@
