Name: Preventing Cloud Access Mismanagement – Lessons from the Codefinger Ransomware Attack
Start: 2025-06-25T13:52:00Z
End: 2025-06-25T13:52:30.000Z
Location: BrightTALK

Centered on intelligent privilege controls, CyberArk provides the most comprehensive security offering for any identity - seamlessly securing human and machine identities accessing workloads from hybrid to multi-cloud, and flexibly automates the identity lifecycle all with continuous threat detection and prevention – protecting organization’s identities and most critical assets by enabling Zero Trust and enforcing least privilege.  

In today’s hybrid enterprise, identities go far beyond employees. Contractors, apps, and even machines all need privileged access — and traditional governance can’t keep up. The result? Blind spots, complexity, and rising compliance risk. And now, AI is reshaping what counts as an identity and transforming how enterprises must govern identities.  

Join CyberArk experts  Tim Arvanites and Tricia Peck for an exclusive webinar where you’ll discover how a platform approach to identity governance can help you: 
-Gain unified visibility across IGA, PAM, and Access Management  
-Reduce risk through least privilege. Strengthen compliance and control without adding complexity. 
-Scale with confidence. Secure every human and machine identity across cloud, SaaS, and on-prem environments. 
-Modernize governance. Replace manual, legacy processes and tools with automated, AI-powered identity governance. 

Don’t let outdated governance practices put your enterprise at risk.

The Identity Governance Reset: How to govern human, machine, and AI identities from one place

Organizations face growing threats as attackers target identity infrastructure, exploiting compromised credentials and session vulnerabilities often missed by traditional tools. With 78% of organizations suffering cyberattacks due to compromised credentials, the weakest link in your security may not be where you expect.
 
This webinar highlights how unified, platform-based identity security can close critical gaps that leave organizations exposed. Experts discuss the evolving threat landscape, walk through key attack vectors identified in the latest Technical Validation Report, and share the defensive results that show what truly stops modern threats. Key strategies to combat credential theft, session hijacking, and privilege misuse will be covered. Key topics include:
 
· Securing browser sessions to protect today’s primary attack surface
· Implementing phishing-resistant MFA to counter attacks like MFA bombing
· Enforcing least privilege at endpoints to strengthen security
· Integrating identity security with existing tools to reduce complexity
· Reviewing validated attack paths and defensive outcomes from the Technical Validation Report
 
Gain actionable insights from experts to defend against credential-based attacks.

Strengthening Identity Security with Platform-Based Defense Strategies

Traditional identity governance often takes 18-24 months to secure just 10-25 applications, leaving many systems unprotected. As regulations tighten and auditors demand proof of strong access controls, organizations struggle to answer who has access to what across their technology landscape.

This webinar introduces a governance-first approach using AI, machine learning, and robotic process automation to transform identity governance. Instead of months designing role-based models, learn how modern tools provide visibility and governance for 100-150 applications in 4-6 months. Key topics include:

· How AI analyzes data patterns to eliminate role modeling
· Integration using out-of-box connectors, no-code APIs, and web scraping
· Strategies to reduce reviewer burden by focusing on outliers
· Spillover benefits that cut access requests and speed value

Discover how organizations achieve faster, comprehensive governance while reducing design cycles.

Foundations of IGA: Building a Modern Approach to Identity Governance

"Quantum computing is transforming the cybersecurity landscape at a faster pace than many realize. While offering groundbreaking potential for innovation, it also poses significant threats to current cryptographic systems safeguarding critical data and digital identities. ""Future-Proofing IAM: Deloitte & CyberArk on Quantum-Safe Strategies"" brings together industry leaders from Deloitte and CyberArk to tackle this dual-edged revolution head-on, with a focus on identity and access management (IAM).

This webinar dives into the quantum computing timeline and its disruptive effects on existing cryptographic protocols like RSA and ECC. The expert panel will break down why the massive growth in machine identities, now at a staggering 45-to-1 ratio compared to human identities, presents an exponentially larger attack surface for quantum-related vulnerabilities.

Attendees will gain a clear understanding of essential topics such as cryptographic agility and the importance of systems that can seamlessly adapt to evolving threats without disrupting business operations. Other highlights include exploring newly finalized post-quantum cryptographic standards by NIST, integrating zero-trust frameworks with quantum-safe protocols, and leveraging AI-driven solutions to safeguard against identity-related risks.

Designed for both CISOs embarking on their quantum-readiness journeys and those further along the roadmap, this session offers actionable insights to prepare for the era of quantum-powered cyberattacks. Featuring contributions from Deloitte’s cybersecurity experts and CyberArk’s strategic engineers, this conversation ensures you leave with the knowledge, strategies, and confidence needed to secure your IAM systems for the future. Don’t wait for Q-Day to act—your next-level security begins now."

Future-Proofing IAM Deloitte & CyberArk on Quantum-Safe Strategies

Most attacks don’t happen at the login screen—they happen inside your SaaS apps. If you can’t see what users are doing in real time, you’re exposed to risk. Blind spots lead to data leaks, compliance slip-ups, and insider threats.

Join CyberArk’s webinar to learn how Secure Web Sessions (SWS) gives you agentless monitoring and instant protection—no productivity trade-offs.

Closing SaaS Security Gaps: Protect Sessions Beginning to End

Agentic AI is reshaping how businesses operate—bringing major opportunity and new security risks. As autonomous AI agents gain access to sensitive systems, organizations must view them for what they are: privileged machine identities.

In this virtual event, experts from CyberArk, AWS and Accenture will cover:

- New research on the agentic AI threat landscape
- Why AI agents must be treated as privileged machine identities
- Lessons from securing human and machine identities
- A preview of CyberArk’s Secure AI Agents solution

Regardless of where you are in your agentic AI journey, you’ll benefit from the thoughtful exploration on how to approach the security of this new type of identity.

Securing the New Frontier of Agentic AI: The Security Imperative for AI Agents

Identity security teams need to manage identities across an ever-expanding portfolio of SaaS applications, and the identity volume is expected to increase significantly with agentic AI. For midmarket enterprises who have not deployed identity governance and administration (IGA), the existing manual governance approach slows the business and drains resources. Join this webinar to learn how technology innovation delivering a modern approach to IGA allows enterprises to meet compliance requirements and ensure all users have the right app access and entitlements continuously.
Join Todd Thiemann, Principal Analyst at Omdia, and Bruce Spooner from CyberArk to learn about the benefits of modern IGA enabling organizations to quickly and cost-effectively govern your identity and application portfolio.

Accelerating Business with Modern IGA

"Traditional application control was built for a simpler threat landscape—but today’s enterprises face dynamic risks that demand a smarter approach. Join us to explore how organizations are modernizing endpoint protection with least privilege and identity-first security.

In this session, you’ll learn how to:

Strengthen your security posture by removing local admin rights and isolating risky apps
Boost efficiency with automation and self-service workflows
Simplify compliance with built-in privilege controls and audit trails
Unlock cost savings by reducing IT workload and minimizing breach impact
Don’t let legacy endpoint controls hold your organization back. See how least privilege delivers stronger protection, smarter operations, and measurable value."

Modern Application Control with Least Privilege: The Identity Security Solution Your Endpoints Need

The recent  Shai-Hulud npm worm shows how fast an initial compromise can spread when secrets are poorly managed. After gaining access, the malware used tools like TruffleHog to harvest hardcoded tokens and credentials, then escalated laterally through packages, pipelines, and cloud accounts. It’s a vivid reminder that without strong policies, decentralized secrets management fuels the blast radius of attacks. 

From hands-on work with customers, our security services team has identified four practices that put organizations most at risk: 

 -Shared access across teams – one secret or account reused across multiple workloads. 
-Poor Kubernetes namespace definitions – mixing dev, test, and prod without clear boundaries. 
-Pipelines under a single identity – Jenkins or Ansible jobs running with unrestricted privileges. 
-One cloud account or platform for everything – concentrating risk into a single identity plane. 

For each, our security services team will share real-world stories of how attackers exploit these practices, and the  field-tested solutions that leading organizations are adopting to fix them. You’ll learn why the true risk isn’t just the secret, but the identity behind it—and how centralizing secrets management reduces blast radius, improves visibility, and scales securely without disrupting developers. 

You will learn: 
-How poor secrets practices enable lateral movement and breach escalation. 
-Four real-world pitfalls we see in customer environments—and proven ways to fix them. 
-Four real-world pitfalls we see in customer environments—and proven ways to fix them.

Secrets Management Horror Stories from the Field: Four Security Pitfalls to Avoid

Orphaned accounts (inactive or unowned user identities that retain access to critical systems) represent one of the most overlooked security risks in modern enterprises. As organizations expand their digital ecosystems with growing SaaS adoption, these forgotten credentials become backdoors for attackers and compliance nightmares for auditors.

In this webinar, we'll explore how orphaned accounts originate through incomplete offboarding, mergers and acquisitions, contractor access gaps, and application sprawl. You'll learn about the real-world consequences, from security breaches and data exfiltration to compliance violations that can jeopardize SOX, GDPR, and HIPAA adherence.

Discover why manual deprovisioning processes can't keep pace with today's complex identity landscapes, and how modern Identity Governance and Administration (IGA) solutions automate the detection and remediation of orphaned accounts. We'll demonstrate how CyberArk Modern IGA provides unified visibility across your entire identity estate, continuously monitors for risky access, and automates cleanup workflows, transforming identity governance from a manual burden into a proactive security control.

Join us to learn best practices for preventing orphaned accounts, establishing automated joiner-mover-leaver processes, and maintaining continuous compliance without the grind.

Digital Ghosts: How to Find and Fix Orphaned Accounts Before Attackers Do

Traditional Identity Governance and Administration (IGA) has long relied on static roles and labels—“Software Engineer,” “Sales Rep,” “Manager.” But in today’s dynamic business environment, this one-dimensional approach quickly becomes outdated, creating role sprawl, endless approval cycles, and review fatigue. The result? Risk is hidden in the noise, while managers rubber-stamp access requests that don’t reflect real-world needs. 

In this webinar, CyberArk Solution Strategy Architect Brian Smits will explore how AI-powered identity profiles transform IGA from guesswork to precision. By analyzing the layered attributes that make each identity unique—such as department, location, projects, and access behaviors—AI Profiles deliver smarter, context-aware access recommendations. The outcome: 
● Up to 80% reduction in review burden 
● Automated onboarding and lifecycle management that adapts as people change roles 
● Clear, auditable evidence that satisfies compliance while focusing attention on true risks 

Join us to see how layered identity insights can help your organization move beyond role fatigue, streamline governance, and achieve access that truly fits the individual—not just their job title.

AI Profiles: Why your IGA needs to see in layers, not labels

CyberArk is unveiling the next generation of Machine Identity Security. Watch demonstrations of Secrets Hub and Certificate Manager as they tackle challenges like secrets sprawl and evolving TLS certificate requirements. See how new SSH Management and Code Signing capabilities protect privileged access and software integrity, keeping modern enterprise environments secure. Blending actionable insights with breakthrough product innovations, the session reveals practical strategies to uncover hidden machine identities, automate lifecycle management, and secure machine-to-machine communications.

Accelerating Machine Identity Security: Bringing Order to the Chaos of Modern Machines

As workforce users continue to be prime targets for credential theft, organizations can’t afford to treat password management as an isolated solution. Join CyberArk experts to learn how Workforce Password Management integrates across the CyberArk Identity Security Platform to deliver stronger, more seamless protection. See how integrations with third-party IdPs, Identity and Privileged Access Management, Secure Web Sessions, and Enterprise Browser extend defenses beyond login—protecting credentials, sessions, and users throughout their entire journey.

Strengthen Workforce Password Security with Platform-Powered Integrations

Join CyberArk's security researchers as they unveil critical vulnerabilities in the Model Context Protocol (MCP) and demonstrate how organizations can protect themselves in the AI era. This session explores the emerging security challenges as AI applications become increasingly integrated into enterprise environments through standardized protocols like MCP.

Discover how the Model Context Protocol, designed as the "USB Type-C port for AI applications," creates new attack vectors through tool poisoning, command injection, and composability chaining. Learn about real-world attack scenarios where malicious MCP servers can hijack execution flows, steal sensitive data, and compromise endpoint security. Our researchers will demonstrate live examples of these vulnerabilities and show how attackers can exploit the trust relationships between MCP hosts, clients, and servers.

Explore comprehensive mitigation strategies using endpoint privilege management solutions to create security boundaries in the MCP ecosystem. See how application control, least privilege enforcement, and file access restrictions can protect your organization's AI infrastructure. Understand the importance of implementing proper security controls as your teams adopt new AI tools and protocols, ensuring they can innovate safely without exposing your organization to unnecessary risks.

Secure endpoint for the AI-era threats: Overprivileged MCPs are now a new class of vulnerabilities

Proving compliance in today’s hybrid, cloud-first world is harder than ever. Organizations often do not have visibility into what users actually do once inside critical applications — leaving dangerous blind spots when it comes to audits and regulatory reviews. 

In this advanced session, CyberArk will show how Secure Web Sessions (SWS) delivers complete, audit-ready visibility and control across workforce web activity. You’ll see how organizations can strengthen compliance, close audit gaps, and protect sensitive data — all without slowing down developers, IT teams, cloud admins or business users. 

You’ll learn how to: 

• Monitor every action taken in cloud consoles (AWS, Azure, GCP) to meet SOX, ISO, and NIST requirements 
• Record SaaS activity in apps like Salesforce, ServiceNow, and Workday for SOC 2, HIPAA, and GDPR audits 
• Track high-value actions in finance and HR systems to satisfy internal controls 
• Build a centralized, defensible and AI assisted audit trail that simplifies compliance and investigations

From Login to Logout: Making Web Access Audit-Ready

Privileged access management remains vital to enterprise security, but the landscape is evolving. Identity-driven threats are rising, and privilege now extends beyond IT admins to nearly every employee. Organizations face pressure from cyber insurers, tool sprawl across 11+ identity solutions, and a surge in machine identities, which can outnumber humans 80 to 1.
 
Join Todd Thiemann, Principal Analyst at ESG, and Ryne Laster from CyberArk as they explore evolving privilege infrastructure toward zero standing privilege while enhancing PAM capabilities. Gain strategies to tackle today’s challenges and prepare for future threats, including AI complexities.
 
· How just-in-time access and zero standing privilege reduce attack surfaces and credential theft risks
· PAM’s role in cyber insurance underwriting and premiums
· Rationalizing identity tools while maintaining top functionality
 
Watch this webinar to learn how to transition to a zero standing privilege architecture.

The Future of Privileged Access: Solving Today’s and Tomorrow’s Challenges

In a hybrid, cloud-first world, every human identity connected to an endpoint becomes a potential attack vector. And when you're managing thousands of users and devices across a large enterprise, the stakes—and the complexity—skyrocket.  That’s why CyberArk and Computacenter are zeroing in on how large organizations can enforce strong, scalable MFA strategies at the endpoint—without slowing people down.

Secure Every Human Identity at the Endpoint Five MFA Endpoint Use Cases for Large Enterprises

The 47-day TLS certificate lifecycle mandate is closing in — and the margin for error is shrinking fast. Whether you're just starting to explore automation or already planning your rollout, this session will show you how to go from patchwork solutions to an end-to-end, scalable strategy.

We'll move beyond building a foundation for certificate automation and dive deep into operationalizing automation, monitoring compliance in real time, and scaling your strategy across platforms and teams.

To bring these concepts to life, we’ll be joined by Jay Armstrong, Expert Cybersecurity Engineer at Discover, a Division of Capital One, who will share how the bank automated certificates on its load balancers with CyberArk Certificate Manager. He’ll discuss the challenges they previously faced, the approach they took to streamline certificate operations, and the impact of automation on reliability and efficiency across their infrastructure.

We’ll also cover real-world maturity milestones and ROI metrics to help measure progress and secure buy-in.

You’ll leave this session understanding how to:

Automate certificate renewal at scale — including deployment
Reduce operational toil and human error across hybrid and cloud environments
Monitor automation success, SLA compliance, and audit readiness
Track key KPIs and use the maturity model to plan your next milestones
Estimate ROI based on time savings, reduced outages, and risk reduction
Take charge of your certificate management strategy.

47-Day Chaos to Control: How to Scale Certificate Automation Before Enforcement Hits

Hybrid cloud is now the default IT model—but truly unlocking its potential requires more than just connectivity. It demands modern identity security strategies that match the pace of cloud-native development. In this EcoCast, Brooke Jameson will share actionable strategies to secure access controls without slowing innovation.

Learn how to streamline operations with automation, eliminate excessive privileges through Zero Standing Privileges, and provide developers secure, native access across multicloud estates. Whether you’re expanding or refining your hybrid architecture, this session will show you how to balance agility with control.

Best Practices: Supercharging Your Hybrid Cloud Environment

As cloud workloads surge, securing privileged access is critical. Emerging best practices, such as zero standing privileges (ZSP), are reshaping how we approach identity security. Join us to discuss CyberArk’s differentiator, T.E.A. (time, entitlements, and approvals), which tightens control over cloud access, reducing risk across your cloud.  It’s (TEA) time to give developers and cloud engineers their desired user experience – one that capitalizes on the benefits that SaaS and CSP consoles provide while still enforcing the necessary level of security.

It’s T.E.A. Time for Developers (Time, Entitlements, Approvals): Empowering Developers with Just In Time Access

Navigating the world of acronyms can feel like a maze! With JIT, ZSP, CIEM, CIAM, IAM, and more, it’s challenging to discern what’s essential for securing your cloud environment. Our security experts are here to guide you. Join us for an engaging discussion on cloud identity security trends that truly matter. We’ll focus on securing developer access at cloud velocity, covering key strategies:

-    Zero Standing Privileges (ZSP): Put an end to lateral movement by granting developers only the necessary access—no more, no less.
-    Native Access: Say goodbye to agents and delays! We’ll show you how to provide native access to elastic workloads and cloud services.
-    Centralized Management: Simplify multi-cloud access by automating and centralizing access requests.
-    On-Demand Elevation: Need critical access in a pinch? Learn how to elevate privileges without delay.

Making Sense of Developer Cloud Identity Security Trends

How can you secure human and machine identities in the cloud, without disrupting innovation? Whether you’re in the early stages of your cloud transformation or operating at scale across AWS, Azure and GCP, you’ll need an integrated approach to visualizing and securing high-risk access, with minimal friction for your efforts.

Join this webinar to learn from CyberArk and Wiz experts as they discuss:
- The importance of visibility over IAM roles, shared accounts and service accounts
- Tips for reporting and analyzing identity-centric security & compliance risks
- Remediating risks with intelligent privilege controls like implementing Zero Standing Privileges and secrets management 
- People and process recommendations for improving cloud security posture without slowing down developer and cloud operations teams
- Best practices for integrating Wiz’s cutting-edge cloud security platform and the CyberArk Identity Security Platform

CyberArk and Wiz – Securing Identity at the Scale and Speed of Cloud Development

IT admins and developers are two highly targeted identities for attackers. So what's the best way to tackle their unique access needs without adding hurdles to their day-to-day workflows? Enforce just-in-time access principles and least privilege whenever possible.

Join us for a deep dive into the practical applications of just-in-time access and newer themes like zero standing privileges. We’ll explore how these concepts can be combined to bring both operational and security focused benefits with the goal of minimizing standing entitlements while maximizing visibility and user experience across data center and Cloud environments.

In this webinar, you will learn how to bring your security program from foundational to exceptional through best practices for both securing IT admins and developers, as well as discover:

How to deliver measurable cyber risk reduction while maintaining operational efficiency across these sensitive personas
How to reduce compliance gaps across environments
How to overcome identity explosion

Understanding Zero Standing Privilege and Just in Time Access

Introducing CyberArk’s Identity Security Clinic. Where experts dissect and diagnose your identity security challenges and prescribe a path forward with a comprehensive solution including actionable insights and strategies to safeguard all identities across your organization.

In our Identity Security Clinic, we will tackle this challenge:

I have developers requesting standing access because they need to connect natively from the CLI. Our current solution does provide standing access, but I need a more secure solution. What do I do?

In this webinar, we will talk through just-in-time access and zero standing privileges. Topics will include:

- Extending privilege controls to developer workflows.
- Maintaining native, frictionless access.
- Applying identity security best practices to developer and machine workloads.

Join us to learn how to master Identity Security best practices, apply zero trust principles, and reduce risk across all your IT admins, developers, non-human and workforce identities. By synergizing workforce identity security with robust IT security measures, organizations can establish a resilient defense against cyber threats while fostering a secure and productive working environment.

Identity Security Clinic: Securing Developers Beyond Standing Access

Watch to learn how we can help your organization secure IT admins and developers with breakthrough capabilities for Zero Standing Privileges and secure high-risk access for IT teams across all environments. CyberArk provides foundational PAM controls, modern session management to cloud workloads, JIT access with ZSP, and enables engineering velocity and efficiency through native user controls.

Securing Admins, Engineers and Developers in Digital Native Businesses

The age of AI is shining a light on the most vulnerable identities within organizations. At the top of this list: developers. They're one of the most valuable assets for digital enterprises. Attackers know this. Initial access to a developer's credentials, an organization's repository, or secrets management leaves your company exposed. In this webinar, join CyberArk to discuss the changing cloud landscape and how it's created new circumstances and attack methods for developers--and what to do to about it.

You'll learn:
• Different methods of risk reduction to equip your security team to protect your organization
• How to maintain velocity of deployments without sacrificing security with zero standing privileges
• The T.E.A. on securing your cloud estate.

Securing Developers by  Closing Credential Security Gaps

For an organization to be secure, every identity must have the right level of intelligent privilege controls.
 
But, realistically, what does that look like for developers when velocity is a constant concern? Is it possible to secure a developer, what they develop, and their environment without impacting operational efficiency? 
 
In this webinar, CyberArk's architects will tackle:
 
-Preventing credential theft by enabling access with zero standing privileges.
-Securing native access to every layer of a cloud environment.
-Gaining centralized visibility and control of secrets.
-Supporting developer’s preferred workflows-- while improving security.

Securing Developers and What They Develop

Secure identities in the cloud

Cloud environments are prime targets for cybercriminals, with mismanaged access often being the weakest link. The Codefinger ransomware attack is a stark reminder of the risks associated with persistent credentials and insufficient monitoring. In this webinar, we’ll analyze how attackers exploited AWS keys to encrypt data and demand ransom—highlighting the need for granular access control. More importantly, we’ll explore how Zero Standing Privileges (ZSP) and Time, Entitlements, and Approvals (TEA) frameworks can proactively mitigate such threats while maintaining developer productivity. Join us to learn how to secure cloud access without slowing innovation.

Preventing Cloud Access Mismanagement – Lessons from the Codefinger Ransomware Attack

Cloud Security

Digital Transformation

Modernization

multi-cloud

Security Strategy

Privileged Access Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Preventing Cloud Access Mismanagement – Lessons from the Codefinger Ransomware Attack

Presented by

About this talk

CyberArk