
The confused deputy problem occurs when a trusted program, service, or automation uses its own privileges to perform an unauthorized action for a lower-privileged requester. This blog explains how attackers exploit trusted tools, why Agentic AI magnifies the risk, and how modern PAM and least privilege approaches stop program-to-program privilege escalation.

Phantom Labs discovered that AWS Bedrock AgentCore Code Interpreter’s sandbox mode allows DNS queries, enabling bypass of network isolation through DNS-based command-and-control. This research details the discovery, proof-of-concept exploit, disclosure timeline, and defensive guidance for organizations using Code Interpreter workloads.

Agentic AI is expanding identity security risk. Here’s how to adopt it without opening new pathways for attackers.

AI agents bring efficiency and risk. This blog shows how BeyondTrust operationalizes AI security by securing agent identities and credentials across AWS, ServiceNow, and Azure AI Foundry.

This blog explores the basics of a Kerberoasting attack, the limitations of traditional Kerberoasting detection methods, and walks through why our data modeling approach is able to surface the hidden threats traditional defenses miss.

This blog marks the first in a series that explores applications of longitudinal data analysis (LDA) in identity security. In this initial blog, we will focus on how LDA can be leveraged to detect anomalous privilege changes, a common security risk in large organizations.
Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.