General

Claude & Control: An Introduction to Agentic C2 with Computer Use Agents This blog explores how computer use agents can be used to build an agentic command-and-control framework. By combining LLM reasoning with desktop interaction tools, attackers could automate endpoint control while blending into normal system behavior. Here, we break down the architecture, abuse scenarios, and detection opportunities.Continue Reading HERE Customer Case Studyivision: How ivision Simplifies and Scales Identity Security with BeyondTrust Latest Available Versions

Finding the Forgotten: Why Credential Discovery Is Essential To Securing Privileged Remote Access The Hidden Credential Problem in Privileged Remote Access. Remote access is ubiquitous, spanning endpoints, cloud systems, and third-party connections. But a common blind spot remains: most organizations do not know the full spectrum of privileged accounts and credentials hiding within their networks.Forgotten admin accounts

Securing the Mission with BeyondTrust Identity Security for Government BeyondTrust’s Expanded FedRAMP Marketplace Solutions are Reinforcing Government Cybersecurity Goals The BeyondTrust Pathfinder Platform and Identity Security Insights® are now available on the FedRAMP® Marketplace under the designation BeyondTrust Identity Security for Government. This milestone, which represents the latest expansion of BeyondTrust’s

What’s New: Identity Security Insights 25.10 New features Redesigned default dashboardWe’ve replaced the previous default dashboard with a redesigned experience that’s faster to act on and richer in context. The new dashboard brings together 20 tiles that unify attack‑path analysis, identity graph insights, and risk signals in one place. Each tile is interactive – click any segment or bar to drill into filtered lists, detailed reports, or related pages.Use this dashboard to: Visualize escalation risk with True Privilege and Paths to Privilege (including cross‑domain pivots) to see how access can be reached or abused. Survey your i

Connecting Identity Security Insights to Okta Introduction Identity Security Insights (Insights) connectors allows the integration of first- and third-party identity and account information with the BeyondTrust Insights console. Leveraging this data, the Insights platform constructs robust identity analytics, proficiently identifies potential identity security vulnerabilities, and offers informed security guidance.Upon successful configuration, Insights automatically schedules and pulls data from the enabled connectors. This allows it to update the content of the console's dashboards and reports with fresh insights, revised recommendations, and recent threat detections. Contents Configure app and role in Okta Create an app integration Create a new role and resource set

Connecting Identity Security Insights to Microsoft Active Directory IntroductionIdentity Security Insights (Insights) connectors allows the integration of first- and third-party identity and account information with the BeyondTrust Insights console. The Insights platform uses this data to build identity analytics, detect identity security threats, and make security recommendations. Once configured, Insights automatically schedules and pulls data from the enabled connectors, and updates the console's dashboards and reports with new or changed recommendations and detections. Prerequisites The Microsoft Active Directory connector should be installed and configured on a member server within the Active Directory. The installer is provided for the tenant after completing the initial configuration. 

Setting Up Identity Security Insights for Sub-Domains Identity Security Insights can be set up for sub-domains. Extra collectors may need to be set up depending on the network connectivity of your organization's environment and the size of the domain. If one machine or member server can reliably connect to all domains and they are not too large (less than 100k users across all domains), only one Insights collector will need to be installed as a minimum to pull information from all the sub-domains.If the connection is unreliable and or large, then separate Insights collectors with targeted domain activated will be required to use Insights with sub-domain, otherwise, data may be doubled when it is collected.  

How to connect Identity Security Insights to BeyondTrust Password Safe Cloud Identity Security Insights (Insights) connectors allow the integration of first- and third-party identity and account information with the BeyondTrust Insights console. Leveraging this data, the Insights platform constructs robust identity analytics, proficiently identifies potential identity security vulnerabilities, and offers informed security guidance.Upon successful configuration, Insights automatically schedules and pulls data from the enabled connectors. This allows it to update the content of the console's dashboards and reports with fresh insights, revised recommendations, and recent threat detectionsFor Password Safe 24.1.1 and newer releases, when an Identity Security Insights connector installation key is enabled in Password Safe, discovery scan events are forwarded from the event service to Identity Security Insights. This provides visibility into p

How Identity Security Insights helped advance identity security programs in 2024 In 2024, BeyondTrust Identity Security Insights aimed to strengthen our collective identity security by enabling identity and access management (IAM) leaders across a variety of industries to uncover identity vulnerabilities and hidden Paths to Privilege™. These leaders can then use these in-depth insights to better manage their

BeyondTrust Releases AI-powered True Privilege Graph to Expose How Attackers Exploit Hidden Paths to Privilege  Revolutionary technology redefines Identity Security by revealing previously undetectable Paths to Privilege attackers attempt to leverage Prioritized remediations enhance security across endpoints, servers, Cloud and SaaS environments, reducing alert fatigue and enabling organizations to strengthen their defenses before attacks occur Read more on our blog Latest Available Version: 25.04 - April 2025 What's New: DashboardsThe Insights Home page is now divid

 Greetings! I'm Phillip Lehner, the Senior Director of Education at BeyondTrust, and I'm thrilled to lead our efforts in delivering exceptional learning experiences. I'm excited to share how we're elevating your journey with a new, streamlined method of accessing training: Success Included with BeyondTrust University.      At BeyondTrust University, we believe our customers deserve nothing short of excellence in the tools they use. That’s why we’ve launched 'Success Included' — to elevate your learning experience and ensure you achieve success with BeyondTrust’s solutions.  Success Included is an education program that makes foundational knowledge accessible to customers at no additional cost. It features easy-to-follow, self-paced eLearning courses that empower system administrators to configure and manage BeyondTrust products using industry best practices. Our goal is to equip learners with the knowledge n

Hello! Last month our Chief Customer Officer, Sean Cashin, provided some information on our upcoming dedicated user community. I’m excited to announce that BeyondTrust launched our new BeeKeepers community on Monday, September 16th! Why BeeKeepers?The name BeeKeepers was born from the idea to protect and secure privileged identities, along with the paths those identities follow in order to gain privilege, aka Paths to Privilege. What does the BeeKeepers name mean to us?Imagine a company’s data and secrets as the honey in a beehive. BeeKeepers take care of the hive, protecting the honey and honeybees, from predators the live to steal the honey, damaging and destroying the hive. Now imagine you, BeyondTrust customers, IT Admins, SOC professionals, and CISOs are the BeeKeepers! And honeybees are identities – human and non-human – continuously travelling along their flight paths, the Path