Articles
Field notes from the access frontier.
Practical writing on SaaS access risk — the patterns we see in real customer environments, the public breach record, and the tools and techniques security teams use to fix them.
What happens to ex-employee access after they leave?
When employees leave, their primary email is disabled, but what happens to all the SaaS tools they were invited to directly?
Why admins without MFA are your biggest risk
A single compromised administrator account can lead to a complete organizational breach. If they don't have MFA, you are rolling the dice.
How long do dormant accounts stay active?
Accounts that haven't been used in months are prime targets for attackers. Why do we keep them around?
The hidden cost of guest accounts in Slack
Inviting an external contractor to a Slack channel is easy. Remembering to remove them a year later is much harder.
MFA is not optional anymore — here's why
Relying on passwords alone is negligence. Multi-Factor Authentication is the bare minimum for modern security posture.