Lucene search
K

11 matches found

OSV
OSV
added 2026/06/18 8:17 p.m.5 views

GHSA-8C59-HR4W-QG69 OpenClaw: Zalo allowFrom could bind to mutable display names

Summary Zalo allowFrom could bind to mutable display names. In affected versions, a Zalo friend or contact with mutable display metadata could match a policy entry through mutable display metadata. This advisory is scoped to the named feature and configuration. It does not change OpenClaw's...

8.6CVSS5.6AI score0.00225EPSS
Exploits0References4
hivepro
hivepro
added 2026/05/26 10:10 a.m.11 views

Identity Exposure Management: Risks and Response

Start with the path that carries risk. Security teams need a clear view of access risk. Stolen tokens and excessive privileges turn legitimate access into an attack route. Identity risk becomes urgent when one exposed account opens a path across critical systems. Identity exposure management is t...

5.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/04/21 4:3 p.m.15 views

Detection strategies across cloud and identities against infiltrating IT workers

In this article 1. Attack chain overview 1. Activities in pre-recruitment phase 2. Activities in recruiting phase 3. Activities in post-recruitment phase 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections The shift to remote and hybrid work since the pandemic expanded glob...

5.8AI score
Exploits0
NCSC
NCSC
added 2026/03/10 8:15 p.m.14 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to impersonate another user, grant themselves elevated privileges or gain access to sensitive data. Azure Entra ID: |----------------|------|-------------------------------------| ...

8.8CVSS5.8AI score0.01046EPSS
Exploits0
The Hacker News
The Hacker News
added 2026/02/24 11:58 a.m.9 views

Identity Prioritization isn't a Backlog Problem - It's a Risk Math Problem

Most identity programs still prioritize work the way they prioritize IT tickets: by volume, loudness, or “what failed a control check.” That approach breaks the moment your environment stops being mostly-human and mostly-onboarded. In modern enterprises, identity risk is created by a compound of...

6.2AI score
Exploits0
Qualys Blog
Qualys Blog
added 2026/01/07 7:27 a.m.6 views

Agent Grant: From Identity Signals to Measurable Risk Reduction

Executive Summary Identity is now the 1 attack surface. Agent Grant in Qualys ETM Identity uses agentic AI to measure and reduce identity risk across AD, Entra, Okta & other cloud IdPs/IDaaS. It operationalizes identity risk by turning messy Active Directory & identity-risk signals into validated...

7.1AI score
Exploits0
HackRead
HackRead
added 2025/12/02 12:1 p.m.3 views

AI Adoption Surges While Governance Lags — Report Warns of Growing Shadow Identity Risk

Baltimore, MD, 2nd December 2025, CyberNewsWire...

7AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/10/15 2:15 p.m.6 views

Bringing the Power of Agentic AI for Identity Risk, Adaptive Threat Prioritization, and Exposure Exploitability Validation

Qualys Enterprise TruRisk Management ETM extends the power of risk operations with agentic AI — Introducing ETM Identity, TruLens for industry-based threat prioritization, and TruConfirm exposure exploitability validation to accelerate your remediation. Every year at our yearly conference, now...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/07/15 11:0 a.m.6 views

Securing Agentic AI: How to Protect the Invisible Identity Access

AI agents promise to automate everything from financial reconciliations to incident response. Yet every time an AI agent spins up a workflow, it has to authenticate somewhere; often with a high-privilege API key, OAuth token, or service account that defenders can't easily see. These "invisible"...

7.1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/06/29 12:0 a.m.8 views

Human vs Machine Identity Risk Management

In today's business world's dynamic and ever-changing digital landscape, organizations encounter escalating security challenges that demand a more business-friendly and pertinent approach...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/07 12:47 p.m.3 views

Tackling the New Cyber Insurance Requirements: Can Your Organization Comply?

With cyberattacks around the world escalating rapidly, insurance companies are ramping up the requirements to qualify for a cyber insurance policy. Ransomware attacks were up 80% last year, prompting underwriters to put in place a number of new provisions designed to prevent ransomware and stem t...

7.1AI score
Exploits0
Rows per page
Query Builder