XM Cyber Enhances Continuous Exposure Management to Combat Identity Risks
Severity: Medium (Score: 42.9)
Sources: www.globenewswire.com
Published: · Updated:
Keywords: continuously, tracker, validated, your, ahead, attackers, discovering
Severity indicators: conti
Summary
On May 27, 2026, XM Cyber announced advancements in its Continuous Exposure Management platform aimed at mitigating identity and access risks. The platform allows organizations to continuously map identity risks and lateral movement across both on-premises and cloud environments. It provides insights into excessive permissions, credential misuse, and misconfigurations that could lead to compromises of critical assets. The tool prioritizes validated attack paths and helps organizations communicate risk effectively to management. It also tracks compliance with industry standards and regulatory requirements. The platform is designed to facilitate proactive remediation and improve security posture over time. Organizations in sectors like banking and manufacturing can particularly benefit from these enhancements, which aim to reduce the likelihood of severe breaches and associated costs. Key Points: • XM Cyber's platform focuses on continuous mapping of identity risks across environments. • The tool prioritizes validated attack paths to critical assets, enhancing proactive security measures. • Organizations can track compliance and improve security posture while reducing potential breach costs.
Detailed Analysis
**Impact** Organizations across multiple sectors including manufacturing, banking, and IT services are affected by identity risk exposures that enable lateral movement and privilege escalation. The risk spans on-premises and cloud environments (AWS, Azure, Google Cloud, STACKIT), potentially compromising business-critical assets and sensitive data. Continuous exposure to excessive permissions, credential reuse, and misconfigurations increases the likelihood of severe breaches, regulatory non-compliance, financial losses, and reputational damage globally. **Technical Details** The attack vector involves exploitation of excessive permissions, credential reuse, cached local and domain credentials, and misconfigurations across Active Directory and cloud infrastructures. The platform continuously maps validated attack paths that enable lateral movement and privilege escalation, focusing on exposure assessment and validation within the Continuous Threat Exposure Management (CTEM) framework. No specific malware, CVEs, or IOCs are mentioned in the articles. **Recommended Response** Defenders should continuously assess and prioritize identity and access exposures across on-premises and cloud environments, focusing on eliminating excessive permissions and credential reuse. Implement guided remediation to enforce least privilege access, monitor credential exposure linked to specific accounts, and optimize configurations of third-party and cloud security tools. Maintain continuous compliance tracking against regulatory standards and monitor validated attack paths to preemptively neutralize threats.
Source articles (2)
- Tracker — www.globenewswire.com · 2026-05-27
Stop bad actors from using excessive permissions, credentials and misconfigurations to compromise your business-critical assets. Continuously map identity risk and lateral movement across the full att… - Tracker — www.globenewswire.com · 2026-05-27
Get ahead of attackers by continuously discovering, prioritizing, and fixing every validated exposure in YOUR environment before it’s exploited . XM Cyber continuously surfaces every validated exposur…
Timeline
- 2026-05-27 — XM Cyber announces platform enhancements: The Continuous Exposure Management platform now includes features for mapping identity risks and validating attack paths across environments.
- 2026-05-27 — Focus on identity and access exposures: XM Cyber emphasizes the importance of addressing identity and access exposures to prevent compromises of critical assets.
Related entities
- Banking (Industry)
- IT Services (Industry)
- Manufacturing (Industry)