Identity Decoded

Practitioner intelligence on identity, AI agents, and enterprise trust.

LATEST ISSUES

The Security Camera Footage of Your Digital Life Is Being Erased While You're Being Robbed

The Security Camera Footage of Your Digital Life Is Being Erased While You're Being Robbed

Attackers aren't breaking in anymore. They're deleting the evidence that they were ever there.

defense evasion

+4

The Security Experts Protecting America Just Got Caught Doing the Thing They Tell You Never to Do

The Security Experts Protecting America Just Got Caught Doing the Thing They Tell You Never to Do

CISA left government cloud keys in public GitHub. Microsoft shipped a debug flag to 3 billion phones. Meta's AI gave away Instagram accounts. Same week.

identity

+5

Ransomware Doesn't Break In. It Logs In

Ransomware Doesn't Break In. It Logs In

The forensics always leads back to the same place — an account that shouldn't have existed, with access it shouldn't have had. Here's what to fix before the 2 AM alert.

identity-security

+7

The Agency Protecting America's Infrastructure Just Leaked the Keys to It on GitHub

The Agency Protecting America's Infrastructure Just Leaked the Keys to It on GitHub

CISA left live AWS GovCloud credentials in a public repo named "Private." It sat there for six months. Nobody inside the agency noticed.

Credential Security

+5

Your AI Coding Assistant Just Cloned Your Entire Repository. You Told It To.

Your AI Coding Assistant Just Cloned Your Entire Repository. You Told It To.

Convention files, prompt injection, and why the line between productivity tool and data pipeline just disappeared

Zero Trust

+6

The Free AI Tool You Installed Last Week Is Robbing You Blind

The Free AI Tool You Installed Last Week Is Robbing You Blind

You clicked "Add to Chrome" because it promised to make you faster. You actually installed a wiretap.

chrome-extensions

+7