Are AI Coding Assistants Quietly Rewriting Threat Models?

• Post author:Pocholo Legaspi
• Post published:May 8, 2026
• Post category:Blogs

AI coding assistants are reshaping developer endpoints in ways most threat models miss. The developer isn't the only agent making decisions at the keyboard.

Continue ReadingAre AI Coding Assistants Quietly Rewriting Threat Models?

Writing a Privileged Access Policy That Holds Up Under Audit

• Post author:Pocholo Legaspi
• Post published:May 6, 2026
• Post category:Blogs

Privileged access policies fail at audit when the writing doesn't reflect practice. The same shortcomings recur across ISO 27001, SOC 2, and DORA reviews.

Continue ReadingWriting a Privileged Access Policy That Holds Up Under Audit

Admin By Request Joins Three Nordic Security and Technology Events in Early May

• Post author:Pocholo Legaspi
• Post published:April 24, 2026
• Post category:Blogs

Admin By Request will be at Oslo Tech Show, V2 Security Copenhagen, and Solution Summit in the first week of May 2026. Here's where to find us.

Continue ReadingAdmin By Request Joins Three Nordic Security and Technology Events in Early May

BlueHammer Got Patched, but Windows Privilege Escalation Threats Aren’t Slowing Down

• Post author:Pocholo Legaspi
• Post published:April 16, 2026
• Post category:Blogs

April 2026 Patch Tuesday is one of Microsoft's largest ever, with 57% of patches covering EoP flaws. BlueHammer is just the most high-profile of the bunch.

Continue ReadingBlueHammer Got Patched, but Windows Privilege Escalation Threats Aren’t Slowing Down

How Does Just-In-Time Privilege Elevation Work in Modern IT Environments?

• Post author:Pocholo Legaspi
• Post published:April 14, 2026
• Post category:Blogs

Removing permanent admin rights is only the first step. JIT privilege elevation handles the rest through controlled, audited access requests.

Continue ReadingHow Does Just-In-Time Privilege Elevation Work in Modern IT Environments?

Why Your Browser is the Most Dangerous App on Your Endpoints

• Post author:Pocholo Legaspi
• Post published:April 9, 2026
• Post category:Blogs

The browser is the most used app in your workplace and one of the least governed. That imbalance has consequences worth taking seriously.

Continue ReadingWhy Your Browser is the Most Dangerous App on Your Endpoints

PAM Complexity is a Security Problem in Itself

• Post author:Paul Fisher
• Post published:April 7, 2026
• Post category:Blogs

PAM was built to secure privileged access. Somewhere along the way, it became too complex to actually use. Here's an honest assessment of where things stand.

Continue ReadingPAM Complexity is a Security Problem in Itself

How Gunnebo Strengthened Its IT Security with Admin By Request

• Post author:Pocholo Legaspi
• Post published:March 30, 2026
• Post category:Blogs

Gunnebo eliminated permanent admin rights across its global operations. A just-in-time model delivered real security gains without impacting productivity.

Continue ReadingHow Gunnebo Strengthened Its IT Security with Admin By Request

Cisco Firewall Zero-Day Exploited by Interlock Ransomware Weeks Before Patch

• Post author:Pocholo Legaspi
• Post published:March 23, 2026
• Post category:Blogs

CVE-2026-20131 gave Interlock unauthenticated root access to Cisco FMC systems. The group had been exploiting it for 36 days before Cisco published a patch.

Continue ReadingCisco Firewall Zero-Day Exploited by Interlock Ransomware Weeks Before Patch

What Should Be in Your Incident Response Plan?

• Post author:Pocholo Legaspi
• Post published:March 18, 2026
• Post category:Blogs

A solid incident response plan is built before you need it. Here's what yours should include, from CSIRT roles to communication templates and tabletop testing.

Continue ReadingWhat Should Be in Your Incident Response Plan?