Microsoft Entra ID Application Security Roadmap: How to Lock Down Modern Apps
March 12, 2026 •Alistair Pugin
Your Microsoft Entra ID application estate is already part of your attack surface – whether you’ve mapped it or not. In Microsoft 365 environments,...
Read More
Modern identity security is not about managing credentials; it is about designing trust boundaries between identity providers and relying parties....
Read More.png?height=630&name=Identity%20Security%20Predictions%20for%202026%20What%20Threat%20Actors%20are%20Targeting%20Next%20(1).png)
Identity Security Predictions for 2026: What Threat Actors are Targeting Next
February 19, 2026 •Alistair Pugin
Identity security is going through a reckoning. Organizations spent the last decade hardening user logins with MFA, Conditional Access, and...
Read More
The Hidden Risks of Entra ID Application Ownership (Part 1)
November 20, 2025 •Glenn Van Rymenant
Assigning ownership to your application and service principal objects in Entra ID might seem like good governance, but it introduces significant...
Read More
Microsoft Entra ID App Governance: How to Clean Up Apps Without the Chaos
August 22, 2025 •Matthew Levy
Cleaning up applications in Microsoft Entra ID (formerly Azure AD) is a critical part of application governance. Without the right data and process,...
Read More%20Exposed%20OAuth%20Credentials%20%20.png?height=630&name=Commvault%20Metallic%20Vulnerability%20(CVE-2025-3928)%20Exposed%20OAuth%20Credentials%20%20.png)
Commvault Metallic Vulnerability (CVE-2025-3928) Exposed OAuth Credentials
August 8, 2025 •Nicolas Blank
Backup applications are designed to protect your data, but when over-permissioned, they can become high-value targets for threat actors. I’ve been...
Read More
In Microsoft Entra ID, enterprise applications without assigned owners, often referred to as "ownerless apps" pose significant risks to...
Read More
Reclaim Control: Automate Entra ID Governance with ENow App Governance Accelerator 3.0
July 15, 2025 •ENow Software
In today’s enterprise environments, Microsoft Entra ID is at the heart of access, identity, and application connectivity. But with hundreds or...
Read More
Securing Workload Identities in Entra ID: A Practical Guide for IT and Security Teams
July 1, 2025 •Alistair Pugin
In part 1 of this blog series, we discussed what workload identities are, their risks, and the consequences they cause if not monitored. In this blog...
Read More.png?height=630&name=Microsoft%20disables%20user%20consent%20by%20default,%20are%20you%20ready%20for%20MC1097272%20(1).png)
Microsoft Disables User Consent By Default, Are You Ready For MC1097272?
June 27, 2025 •Sander Berkouwer
On June 17th, in its Message Center, Microsoft announced a major upcoming change in the context of its Secure Future Initiative (SFI) that has a high...
Read More