FINAL POST FROM THE FLOOR: #BlackHatUSA 2025 Coverage!

Access Roulette: How to Stop Betting Your Security on Standing Privileges

This wraps up our on-location content from Las Vegas!

Next week we'll reconnect with our main event sponsors— BLACKCLOAK, Dropzone AI, Stellar Cyber, and Akamai Technologies—to bring you their post-event insights and feedback. Of course ThreatLocker's recap was already captured on the floor and published earlier today. Plus, watch for our closing reflection articles from me Marco Ciappelli and Sean Martin, CISSP!

Our final floor conversation comes thanks to our friends at Apono

Modern enterprises are gambling with security every day. Static permissions, manual approvals, and periodic audits create "privilege creep" that turns every over-privileged account into a potential breach waiting to happen.

At #BlackHat USA 2025, Ofir Stein from #Apono reveals how to break this dangerous cycle.

The stakes keep rising:
• Non-human identities (service accounts, #APIs, #AIagents) retain high-level privileges long after tasks complete
• Organizations discover risks during audits but lack scalable remediation
• #Business teams need rapid access while security teams battle expanding #attacksurfaces

Apono's Zero Standing Privilege model:
• Removes ALL permanent access by default
• Grants access dynamically based on business context
• Automatically revokes permissions when tasks complete
• Works for both human AND non-human identities
• Integrates with existing #identity providers—no rip and replace

Key capabilities:
• Context-based policy management aligned with business objectives
• Continuous discovery of identities, privileges
• Automated remediation of unnecessary privileges
• Real-time anomaly detection feeding #SOC workflows
• Scalable across centralized and decentralized environments

The result?
Engineers gain control over their access (building trust), security teams maintain tight governance, and organizations can finally stop betting their security on standing privileges.

Watch the video: https://youtu.be/ciBsH84PVQU

Listen to the podcast: https://brand-stories-podcast.simplecast.com/episodes/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story-HD5Uq_kf

Read the blog: https://www.itspmagazine.com/their-stories/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story

➤ Learn more about Apono: https://itspm.ag/apono-1034

✦ Catch more stories from Apono: https://www.itspmagazine.com/directory/apono

Follow all of our #BHUSA 2025 coverage: https://www.itspmagazine.com/bhusa25

Dear fediverse and folks at @discuss.systems – here comes a brief #introduction. First things first: I'm Peter, 37, dad of 2, postdoc at Ilmenau Tech/Germany. Posting personal views and stuff that fascinates me.

Originally joined to talk and learn technology. That said, I'm basically a #nerd-of-all-trades and so are my interests and topics I might toot or join discussions about. Below is a not even semi-exhaustive list of relevant tags… Executive summary in bio .

Tech stuff:

* #Operatingsystems concepts, design, implementation #os #osdev #osdesign
* Information security, especially #accesscontrol #infosec #cybersecurity #itsec #cti
* Programming languages #rust #rustlang #c #cpp #lisp #ada
* #Gamedev #gamedesign #godotengine #bevyengine
* #Linux #fedora #debian
* FOSS #vim #alacritty #wayland #swaywm #aerc #qutebrowser #texlatex #gnu

Science stuff:

* #Space #astrodon #spaceflight
* Future technology #scifi #sf #sciencefiction
* #Robotics
* #History
* Constructed languages #conlang #lojban #esperanto #fiatlingua

Other stuff:

* #Creativewriting #writing #storytelling
* #Animals #dogs #cats #birds #pigs
* #Music #metal #jazz #piano #orchestralmusic
* #Photography #filmphotography #analogphotography #fujifilm
* #Japanese language and culture #japan #nihon
* #Tibet #buddhism
* Magic the Gathering #mtg #magicthegathering
* #Snooker
* #Laphroaig #craftbeer #mojito

Some authors:

* Jorge Luis #Borges
* Kurt #Vonnegut
* Isaac #Asimov
* James #Tiptree Jr.
* Jeff VanderMeer #southernreach
* #StephenKing
* Colin #Thubron
* Eliot Pattisons #tibet
* Jon Krakauer #intothewild
* Tim Butcher #bloodriver
* Michael Marrak (German only, sadly enough)