https://me.itsecurity.network/tags/zero-trust/Recent content in Zero Trust on Sammy FaridaHugo -- 0.147.3enFri, 13 Mar 2026 00:00:00 -0500https://me.itsecurity.network/blog/docker-sandboxes-enterprise-security-for-ai-coding-agents/Fri, 13 Mar 2026 00:00:00 -0500https://me.itsecurity.network/blog/docker-sandboxes-enterprise-security-for-ai-coding-agents/Running AI coding agents directly on enterprise endpoints expands the attack surface. Docker Sandboxes isolate agents in microVMs with private Docker daemons and network controls, materially reducing the risk.https://me.itsecurity.network/blog/agent-skills-the-new-supply-chain-attack-vector/Sun, 01 Mar 2026 00:00:00 -0500https://me.itsecurity.network/blog/agent-skills-the-new-supply-chain-attack-vector/AI agent skills marketplaces like ClawHub and OpenClaw promise productivity magic but hide malware risks. These ecosystems bypass traditional supply chain defenses, enabling prompt injection, credential theft, and silent data exfiltration.https://me.itsecurity.network/blog/building_workforce_security_guardrails/Sun, 01 Feb 2026 00:00:00 -0500https://me.itsecurity.network/blog/building_workforce_security_guardrails/A practical, architecture-focused deep dive into designing workforce security guardrails that reduce blast radius and systemic risk without slowing engineering teams at scale.https://me.itsecurity.network/blog/change-healthcare-ransomware-breakdown/Wed, 13 Aug 2025 22:14:31 -0400https://me.itsecurity.network/blog/change-healthcare-ransomware-breakdown/The 2024 Change Healthcare ransomware attack exposed how a single missing control MFA on remote access systems led to the largest healthcare data breach in history. This post analyzes the architectural failures that allowed attackers to compromise 190 million patient records.https://me.itsecurity.network/blog/microsoft-zero-trust-transformation/Mon, 11 Aug 2025 00:56:53 -0400https://me.itsecurity.network/blog/microsoft-zero-trust-transformation/A deep dive into Microsoft's Zero Trust security model, breaking down their implementation into actionable phases for any organization looking to modernize its security architecture.