-
Something changed to Autofill in the day or so?
Now having LastPass show in strange place like Excel Online sheet names and other boxes for several other site where it didn't before. Also Edge isn't always filling with the login options, instead seeing 'time for a refresh' message. multiple machines.
-
What’s the best way to configure Advanced MFA or Workstation MFA for employees?
I’m exploring Advanced MFA and Workstation MFA to strengthen security for our organization. From what I’ve read, Advanced MFA can protect vault logins, SSO apps, VPNs, and even includes contextual policies like geofencing. Workstation MFA adds a second layer of authentication when employees log into Windows or macOS…
-
Here are five immediate steps every growing business should take
No organization is breach‑proof, but resilient organizations recover quickly, minimize downtime, and avoid ransom payments because backups are robust, incident playbooks are practiced, and identity is locked down. Make sure you follow this checklist to ensure your business remains secure: Implement phishing-resistant…
-
What is digital squatting?
Digital squatting includes typosquatting, combosquatting, TLD abuse, and homograph attacks. These deceptive tactics all aim to capitalize on established brands and differ in their specific techniques. Digital squatting and phishing are often treated as separate threat vectors, but they are deeply intertwined. Digital…
-
What practical steps can SMBs take to protect themselves from digital squatting scams?
Here are a few simple steps SMBs can take to better protect themselves against these threats: Register obvious variations of your domain (cheap and effective). Enable MFA everywhere (cuts off most credential theft). Use email security tools that check for lookalike domains. Tools like DNS firewalls can automatically block…
-
Three LastPass Admin Policies to Enable Today
Prohibit Sharing Except for Shared Folders LastPass offers password sharing to help employees securely and conveniently share logins with others inside and outside the organization. By default, individuals can share items one-on-one, or teams can easily collaborate and access shared accounts by setting up shared folders.…
-
Human identities vs bot identities vs AI agents: What’s the difference?
Here's the short: Human identities are non-deterministic (behavior changes based on context) and often authorized through RBAC, ABAC, or other identity governance controls. Bot identities are machine accounts that exhibit deterministic behavior. They operate under pre-defined permissions, which means specific inputs result…
-
Agentic AI identity access management Vs. traditional IAM
While traditional IAM relies on passwords and MFA, AI IAM must navigate: Volumes of ephemeral agents and their token lifecycles Cross-agent communications Cross-app permissions Unlike human users or service accounts, AI agents aren’t tied to roles or even a specific application. Instead, they make decisions, take actions,…
-
Why does traditional IAM fall short for AI agents?
Traditional IAM falls short because pre-defined identity governance controls like RBAC are too broad for autonomous AI agents, whose behavior can be manipulated in real-time. In the 2025 CoPhish attack, threat actors created fake AI chatbots on Microsoft’s trusted Copilot Studio site and then sent phishing links…
-
What are the limitations of OAuth 2.0 for AI agents?
OAuth 2.0 access tokens expire quickly but refresh tokens are functionally long-lived. That’s why the CoPhish attack was so dangerous. The AI agent didn’t just get temporary access; it got persistent access through refresh tokens that let it create access tokens at will. And although OAuth 2.1 isn’t finalized, it tries…