Research

The End of NTLM and the Kerberos Reckoning Apr 14, 2026

Microsoft is dismantling NTLM through a three-phase deprecation plan while Kerberos faces its own expanding attack surface. A comprehensive look at the threat landscape, vendor responses, and the modern alternatives enterprises must adopt.

The Audit Blind Spot: Why Workload Identities Escaped Review and Why That Era Is Ending Apr 8, 2026

Most organizations cannot pass a rigorous audit of their non-human identity controls today. PCI DSS 4.0.1, DORA, and NYDFS now explicitly require service account access reviews, yet the average enterprise still has 60% of its AWS IAM access keys older than one year.

> Research