October 11, 2025
Company
Introducing Defakto: The Future of Non-Human Identity Security
Today, we’re officially introducing Defakto. For the past 3 years, our team has been building the platform that will define how enterprises secure non-human identity. The workloads, APIs, and AI agents that now outnumber humans 45:1 in every organization. We’re not managing secrets better. We’re eradicating them entirely. Legacy IAM was built for people. Defakto …
September 29, 2025
Identity
Authentication is not Authorization: Why treating them as the same breaks your security model
September 17, 2025
Real-World Lessons
Shai-Hulud npm Supply Chain Attack: Why Secrets Fueled the Worm
September 2, 2025
Real-World Lessons
From OAuth Tokens to API Keys: The Toxic Data Behind the Salesloft Drift / Salesforce Breach
August 18, 2025
AI
MFA vs Multi-Attestation: Why AI Needs a New Identity Model
August 5, 2025
Identity
Service Accounts Were a Shortcut—Now They’re a Liability. It’s time to go Accountless.
July 31, 2025
Real-World Lessons
Wiz’s Base44 Vulnerability Findings Spotlight a Fixable Gap: Non-Human Identity
July 16, 2025
Real-World Lessons
Another Day, Another Leaked API Key — This Time, It’s xAI
July 11, 2025
Real-World Lessons
McDonald’s McHire Breach Shows Why APIs Need Non-Human Identity and Strong Auth
July 9, 2025
CI/CD
Want Control Over Secrets? Start with Your Strategic Control Point: CI/CD.
June 30, 2025
Identity
Secret Sprawl: Understand It To Reduce Your Risk
June 19, 2025
Real-World Lessons