Articles Manufacturing & Industrial Why OT/IT convergence makes manufacturing credential control a production-line issue 7 May 2026 Why OT/IT convergence makes manufacturing credential control a production-line issue When Toyota's global production ground to a halt in February 2022 due to a cyberattack on key supplier…
Articles Insider Threat Why training and policy will never stop agent credential sharing 7 May 2026 Why training and policy will never stop agent credential sharing When HCL Technologies disclosed in October 2023 that unauthorised access had compromised client data across multiple service accounts,…
Articles Critical Infrastructure Why OT and IT credential convergence is the energy sector’s defining vulnerability 7 May 2026 Why OT and IT credential convergence is the energy sector’s defining vulnerability The February 2021 attack on Oldsmar's water treatment facility in Florida began with a single compromised credential. Within…
Articles Access Revocation Why IAM, PAM, and Zero Trust all leave the same credential gap 7 May 2026 Why IAM, PAM, and Zero Trust all leave the same credential gap When Medibank's systems were breached in October 2022, exposing the personal health information of 9.7 million customers, investigators…
Articles Healthcare Why Clinical Staff Controlling Their Own Credentials Is a Structural HIPAA Failure 7 May 2026 Why Clinical Staff Controlling Their Own Credentials Is a Structural HIPAA Failure When hackers breached CommonSpirit Health in October 2022, compromising 623,774 patient records across 142 hospitals, the attack vector…
Articles Defense & Government Why cleared personnel controlling their own credentials is a national security vulnerability 7 May 2026 Why cleared personnel controlling their own credentials is a national security vulnerability The recent breach of Snowflake's cloud infrastructure, which compromised data from over 165 major organisations including Ticketmaster and…
Articles Compliance Failure How M&S Lost £300m to a Credential It Didn’t Control 7 May 2026 How M&S Lost £300m to a Credential It Didn’t Control When Marks & Spencer's former head of technology sold the retailer's customer database to competitors in 2022, the…
Articles Manufacturing & Industrial Tier 1, 2, and 3 suppliers hold credentials to your production systems. All of them. 7 May 2026 Tier 1, 2, and 3 suppliers hold credentials to your production systems. All of them. When Toyota shut down 28 manufacturing plants across Japan in February 2022 following a cyberattack on supplier Kojima…
Articles Access Revocation The PAM credential problem 7 May 2026 The PAM credential problem: why the vault is only as secure as the technician who holds the key In August 2024, CrowdStrike's incident commander revealed how a single privileged credential had enabled attackers to maintain persistence…
Articles Financial Services The BPO credential problem every financial services firm is carrying 7 May 2026 The BPO credential problem every financial services firm is carrying When Medibank's customer data breach exposed 9.7 million records in October 2022, investigators traced the attack vector to…
Articles Third-Party Access SolarWinds 7 May 2026 SolarWinds: How One Vendor Credential Reached 18,000 Organisations Including the US Government On 13 December 2020, cybersecurity firm FireEye disclosed that nation-state attackers had infiltrated SolarWinds' Orion network management software,…
Articles Managed Service Providers SOC 2, ISO 27001, and NIS2 7 May 2026 SOC 2, ISO 27001, and NIS2: what MSPs must evidence on credential governance The £36 million fine imposed on British Airways following its 2018 data breach sent shockwaves through every sector…