AI Agents as the New Insider Threat
Explores how autonomous AI agents pose a new insider threat to enterprise security, operating with credentials and access but lacking human oversight.
Arnav Sharma is a cloud architect, Microsoft MVP, and certified Azure/AWS/GCP expert based in Sydney, sharing real-world cloud, DevOps, and security insights.
34 articles from this blog
Explores how autonomous AI agents pose a new insider threat to enterprise security, operating with credentials and access but lacking human oversight.
Guide to setting up Microsoft Entra Agent ID for AI agent identity governance, including blueprint creation, authentication, and hardening.
Overview of the OWASP Top 10 security risks for agentic AI applications, including attack vectors and mitigations.
Applying zero trust security principles to AI agents in cloud environments, addressing challenges and compliance requirements.
Analysis of Australia's Horizon 2 Cyber Strategy (2026-2028), detailing its expansion of cyber maturity across the economy and implications for security practitioners.
Explains non-human identity sprawl, its risks in cloud/hybrid environments, and how security teams can manage machine identities at scale.
A detailed comparison of Wiz vs Microsoft Defender for Cloud, covering architecture, CNAPP scope, pricing, and threat detection for cloud security.
Guide to preventing prompt injection attacks in AI systems, covering real-world examples and defense strategies.
Analysis of the Tata Electronics supply chain breach exposing Apple and Tesla data, with security recommendations for Australian organizations.
Guide to Azure machine identities, managed identities, and workload identity federation for secure, secretless architectures.
Explains ChatGPT Lockdown Mode, a security feature preventing prompt injection attacks by disabling outbound data channels.
Compares Microsoft 365 E3 vs E5 licenses, covering pricing, security, compliance, and mixed licensing strategies for enterprises.
Analysis of active FIFA World Cup 2026 scams, including fake domains, phishing, and malware threats from cybercriminals.
A guide to agentic AI security risks, governance frameworks, and architectural defenses for enterprise networks.
Analysis of cloud container vulnerabilities, misconfigurations, and security risks in Kubernetes environments.
Analysis of Microsoft's AI Prompt Defense Stack, including Prompt Shields, Spotlighting, and Defender for Cloud, to protect against prompt injection attacks.
Analysis of three major Australian cyber attacks: DDoS, ransomware, and data breach, with technical details and defensive recommendations.
Compares Microsoft Entra ID, AWS IAM Identity Center, and Google Cloud Identity for cloud IAM, highlighting architectural differences and security implications.
Explains why password resets alone fail in Active Directory environments due to cached hashes, Kerberos tickets, and hybrid sync gaps.
Complete guide to Microsoft Defender for Cloud Apps CASB configuration, covering licensing, discovery, policies, and OAuth governance.