OAuth Token Vunerability, TrustFour: Workload and Non-Human Identity Attack Surface Security

January 23, 2025

Understanding the 3-Layers of Non-Human Identity (NHI) Security in TrustFour’s Posture and Attack Surface Management Framework

In today’s interconnected digital ecosystems, securing Non-Human Identities (NHIs) has become a critical focus. NHIs—representing machines, applications, containers, and microservices—outnumber human identities exponentially and serve as essential components in modern IT infrastructures. However, their growing volume and complexity have created a vast, dynamic attack surface.

January 23, 2025

By Robert Levine

TrustFour’s OWASP 2025 NHI Top Ten Coverage

T4 redefines ASM by ensuring only authorized workloads can utilize NHIs through robust isolation powered by mTLS and a “ring-fenced” authorization map. With T4, unauthorized workloads are stopped in their tracks, slashing the attack surface and mitigating risks before they become breaches. Focusing on ASM first delivers immediate,...

December 16, 2024

By Jim Curtin

Fifth Generation Warfare (5GW) Readiness with TrustFour

Fifth Generation Warfare (5GW) emphasizes non-traditional tactics such as cyber warfare, information manipulation, and asymmetric strategies. In this context, TrustFour’s expertise in securing workload interactions, managing Transport Layer Security (TLS) configurations, protecting Non-Human Identities (NHIs), and leveraging advanced telemetry plays a pivotal role in supporting 5GW operations.

November 20, 2024

By Robert Levine

Shift Up and Shift Left Workload Attack Surface Protection

In today’s security landscape, the concept of a hardened perimeter is increasingly insufficient. With the rise of hybrid and multi-cloud environments, lateral movement attacks, where attackers move through internal systems once a breach has occurred, have emerged as a significant threat.

March 21, 2024

By TrustFour Marketing

The CyberHut TV Interview with Robert Levine

November 2, 2023

By Robert Levine

The Cloud has a serious and fragile vulnerability: Access Tokens

The October 2023 OKTA support system attack that so far has publicly involved Cloudflare, 1Password and BeyondTrust informs us just how fragile and vulnerable our cloud applications are because they are built using access tokens to authenticate counterparties.