Delinea boosts cloud security for AI innovation
Attackers are increasing sophistication and exploit opportunities, reports Mandiant
CISO news
Delinea boosts cloud security for AI innovation
D elinea is introducing new and planned capabilities to its cloud-native identity security platform, strengthening its Machine and AI solution.
The upgrades will enable organisations to secure AI adoption and use AI for security, without compromising compliance or productivity.
Delinea Labs specialises in the increasing problem of machine identity sprawl, estimating 46 machine identities for every human one. The new updates will help organisations manage human and machine identities across cloud environments.
Key features include Vault AI, for managing AI credential access; Secure AI, for enforcing access controls on AI systems; Discover AI( preview in Q2 2025), to identify and secure unsanctioned AI use; AI-Driven Authorisation( preview in H2 2025), to enforce least privilege; and Identity AI( future release), a native large-language model( LLM) for privileged accounts.
Delinea’ s new and planned Machine and AI solution enhancements will help organisations identify, govern, and secure human and machine identities across complex cloud environments, allowing for resilient and seamless identity security at scale.
“ Enterprises are entering an important phase where securing AI isn’ t just a technical challenge – it’ s a strategic imperative that enables the core business,” said Todd Thiemann, Principal Analyst at the Enterprise Strategy Group.
“ AI has become an integral driver of business transformation, and it’ s fuelling a population boom of machine identities that are reshaping the foundation of enterprise security,” said Phil Calvin, Chief Product Officer at Delinea.
Attackers are increasing sophistication and exploit opportunities, reports Mandiant
A new report by Mandiant, M-Trends 2025, reveals that cyberattackers are increasing the sophistication of their attacks while also exploiting readily available opportunities.
China-nexus groups are noted for creating custom malware, using zero-day vulnerabilities and employing advanced techniques to evade detection.
However, the report shows that many successful attacks involve exploiting existing weaknesses, such as using credentials stolen by infostealers, which have become the second most common initial infection vector( 16 %). Attackers are also targeting cloud migration gaps and unsecured data repositories.
Stuart McKenzie, Managing Director Mandiant Consulting EMEA, said:“ Financially motivated attacks are still the leading category. While ransomware, data theft and multifaceted extortion are and will continue to be significant global cybercrime concerns, we are also tracking the rise in the adoption of infostealer malware and the developing exploitation of Web3 technologies, including cryptocurrencies.
“ The increasing sophistication and automation offered by AI are further exacerbating these threats by enabling more targeted, evasive and widespread attacks.”
Financially motivated actors remain the dominant threat( 55 %), with exploits being the most common initial infection vector( 33 %). Stolen credentials have risen significantly, surpassing email phishing( 14 %).
The report also found that organisations are still more likely to learn of a compromise from an external party( 57 %) than internally( 43 %). The global median dwell time increased slightly to 11 days. The financial sector remains the most frequently targeted industry.
10 WWW. INTELLIGENTCISO. COM