InfoQ

AWS Adds Automated Detection of Unused IAM Roles, Users, and Permissions

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
CSOonline

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM credentials from other tasks—without host access. At Black Hat USA 2025, ...
Opinion

Human-centric IAM is failing: Agentic AI requires a new identity control plane

Make identity the control plane, move authorization to runtime, bind data access to purpose and prove value on synthetic data before touching the real thing.
Cloud Computing

Palo Alto Networks warns of ‘critical’ IAM misconfigurations potentially worth millions

Cloud misconfigurations continue to cause major headaches for organisations – and a recent report from Palo Alto Networks has uncovered an identity and access management (IAM) flaw that could have ...
Computer Weekly

Universal IAM policy failings put cloud environments at risk

An overwhelming majority of organisations lack the proper identity and access management (IAM) policy controls to effectively secure their sensitive data in cloud environments, according to Palo Alto ...

How The CISO Role Is Evolving To Drive Business Growth

In other words, the modern CISO’s responsibility is to help the business move forward safely rather than hold it back.