Back

XM Cyber Enhances Identity Exposure Management to Combat AI-Driven Attacks

Severity: Medium (Score: 42.9)

Sources: www.globenewswire.com, Markets.Businessinsider, Xmcyber, Scworld

Published: 2026-05-27 · Updated: 2026-05-27

Keywords: cyber, identity, exposure, management, helping, expands, enterprises

Severity indicators: exposure, rce

Summary

On May 27, 2026, XM Cyber announced enhancements to its Continuous Exposure Management platform to help organizations enforce least-privilege access and mitigate identity risks exacerbated by AI-enabled attackers. The updates focus on addressing excessive permissions, a common vulnerability exploited by attackers for lateral movement within hybrid-cloud environments. According to Gartner, by 2028, 70% of CISOs will leverage identity visibility to reduce the IAM attack surface. The new features include granular visibility into access permissions and their actual usage, allowing security teams to identify and revoke unused permissions. This aims to improve risk posture without disrupting operations. The enhancements are designed to facilitate collaboration between IT, DevOps, and security teams, ensuring a more effective response to identity-related threats. The announcement coincides with XM Cyber's participation in the Gartner Security & Risk Management Summit from June 1-3, 2026. Key Points: • XM Cyber has expanded its platform to enhance identity exposure management. • New features focus on reducing excessive permissions to enforce least-privilege access. • The updates aim to improve collaboration among IT, DevOps, and security teams.

Detailed Analysis

**Impact** Enterprises operating hybrid-cloud environments and using Active Directory, Microsoft Entra, and multicloud platforms are affected by excessive permissions that increase identity risk. This risk is amplified by AI-driven credential attacks, enabling lateral movement after initial compromise. The scope includes organizations globally, with particular relevance to sectors reliant on complex identity and access management (IAM) at scale. Data at risk includes credentials and access to critical assets across on-premises and cloud infrastructures. **Technical Details** Attackers exploit excessive permissions within identity and access management systems to facilitate lateral movement. The expanded platform capabilities analyze actual usage of privileges across Active Directory, Entra, and cloud environments to identify unused or over-permissive roles. No specific malware, CVEs, or IOCs are mentioned. The attack vector centers on identity exposure and privilege escalation within hybrid environments, targeting the reconnaissance and lateral movement stages of the kill chain. **Recommended Response** Organizations should implement continuous monitoring of identity permissions and usage to enforce least-privilege access policies. Immediate actions include revoking unused or excessive permissions validated as part of attack paths and integrating identity risk insights into remediation workflows across IT, DevOps, and security teams. Harden configurations in Active Directory, Microsoft Entra, and cloud entitlement management to reduce attack surfaces. Monitor for anomalous permission usage and AI-driven credential attack patterns.

Source articles (5)

  • XM Cyber Expands Identity Exposure Management, Helping Enterprises Enforce Least ... — Markets.Businessinsider · 2026-05-27
    TEL AVIV, Israel, May 27, 2026 (GLOBE NEWSWIRE) -- XM Cyber , a leading provider of Continuous Exposure Management, today announced platform enhancements aimed at helping organizations reduce identity…
  • XM Cyber Expands Identity Exposure Management, Helping Enterprises Enforce Least ... — Xmcyber · 2026-05-27
    TEL AVIV, Israel, May 27, 2026 — XM Cyber, a leading provider of Continuous Exposure Management, today announced platform enhancements aimed at helping organizations reduce identity risk, compounded b…
  • XM Cyber expands platform to enforce least-privilege access | brief — Scworld · 2026-05-27
    XM Cyber Inc. announced an expansion of its platform with new capabilities designed to help enterprises enforce least-privilege access across Active Directory, Microsoft Entra, and multicloud environm…
  • Tracker — www.globenewswire.com · 2026-05-27
  • [email protected] — www.globenewswire.com · 2026-05-27

Timeline

  • 2026-05-27 — XM Cyber announces platform enhancements: New capabilities aim to help enterprises enforce least-privilege access and reduce identity risks from AI-enabled attacks.
  • 2026-05-27 — Gartner predicts increased use of identity visibility: Gartner forecasts that by 2028, 70% of CISOs will adopt identity visibility to shrink IAM attack surfaces.
  • 2026-06-01 — XM Cyber to demonstrate new features at summit: XM Cyber will showcase its platform enhancements at the Gartner Security & Risk Management Summit in Washington, D.C.

Related entities

  • montner.com (Domain)
  • [email protected] (Email)
  • [email protected] (Email)
  • Active Directory (Platform)
  • Entra (Platform)
  • Microsoft Entra (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed