Oasis Security

The Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025 is a big step toward enhancing collaboration and trust between security researchers and vendors, ensuring vulnerabilities are reported and mitigated responsibly. At Oasis Security, we are deeply committed to proactive security research and strengthening the broader security ecosystem. Our research team continuously analyzes risks, identifies vulnerabilities, and works closely with the community to enhance security best practices. Transparency, collaboration, and responsible disclosure are key to building trust and resilience in today’s digital landscape. Great insights in this article by Jordyn Alger looking forward to seeing this legislation drive stronger security across federal contractors. #Cybersecurity #VDP #IdentitySecurity #NonHumanIdentity #FederalCyber

If you are attending the FS-ISAC 2025 Americas Spring Summit, don't miss it!

𝗛𝗲𝗮𝗱𝗶𝗻𝗴 𝘁𝗼 𝗙𝗦-𝗜𝗦𝗔𝗖? Join us and our partners: Cyera, Cycode, Seemplicity, Sysdig, and Valence Security for an unforgettable New Orleans night out! Register below to experience the rich flavors of authentic creole food, drinks, and jazzy sounds of the Big Easy! Only a few seats left: https://lnkd.in/ebBKnuSC

𝗡𝗛𝗜 𝗗𝗶𝘀𝗰𝗼𝘃𝗲𝗿𝘆 𝗺𝘂𝘀𝘁 𝗴𝗼 𝗯𝗲𝘆𝗼𝗻𝗱 𝗶𝗻𝘃𝗲𝗻𝘁𝗼𝗿𝘆. Discovering NHIs is just the beginning. In his latest article, Adam Ochayon explains why organizations must go beyond inventories and address the ‘5 Ws’ of NHI security to truly reduce risk. #IdentitySecurity #NHISecurity #IAM #NHI #NonHumanIdentity

❗ New Threat Actors Alert❗   We’ve just identified and published three new non-human threat actors on the Non-Human Identity Threat Center. These actors are targeting companies in the financial sector and beyond, using automated tools to disrupt operations and exploit data. Here’s a quick overview: Actor-47: Huldufólk (UAE) Focused on financial and energy sectors, leveraging bots for large-scale data collection or service disruption. Actor-48: Guestlist (Global) A high-reputation actor targeting financial, hospitality, and retail sectors, creating significant disruption through automated scraping. Actor-52: Al-Jinn (Pakistan) Aggressively targeting healthcare, financial, and energy sectors with API-based attacks for data exploitation. Stay ahead of the threats. Learn more about these actors and protect your business at https://lnkd.in/dHvWAXRG. #Cybersecurity #ThreatIntelligence #NonHumanidentity

Free Platform to Monitor and Track Non-Human Identity Attacks! APIs, tokens, and service accounts, attackers love them! Non-Human Identities (NHIs) are digital identities assigned to machines, applications, and automated processes, not people. These identities enable authentication, authorization, and communication between systems, services, and applications in modern IT environments and critical systems making them prime targets for attackers! Example? • API Key Theft – Stolen keys give attackers access. • Service Account Abuse – Compromised accounts escalate privileges. • Bot Attacks – Bots brute-force, scrape, or DDoS. • OAuth Hijacking – Stolen tokens grant unauthorized access. • Cloud Identity Exploit – Weak credentials lead to breaches. The Non-Human Identity Threat Center, a threat intelligence platform specializing in monitoring and analyzing threats targeting NHIs: https://lnkd.in/g5Qwgm5M Don’t wait to be the target, use advanced analytics to hunt threats before they hunt you! Discover over 10+ essential data analysis techniques for effective threat hunting in my "Cyber Threat Hunt 101" YouTube series, explained simply: https://lnkd.in/gkVB6B2j Please share and subscribe if you enjoy the content! #cybersecurity #threathunting #threatdetection #blueteam #soc #socanalyst #skillsdevelopment #careergrowth #IR #DataAnalysis #IncidentResponse

Honored to receive the SiliconANGLE & theCUBE Rocketship Award! 🚀 Thank you Kristen Martin for hosting me, really enjoyed our conversation about Oasis Security's journey, AI-driven security approaches, and industry milestones. 🎥 Watch it here: https://lnkd.in/dWsjdynY #CyberSecurity #IdentitySecurity #AI #Innovation #OasisSecurity #theCUBE #RocketshipAward

PCI DSS 4.0 is here, and non-human identities are in the spotlight. But with great attention comes great responsibility. Join us as Vini takes the stage to break down one of the most pressing topics in compliance: 𝗧𝗵𝗲 𝗡𝗲𝘄 𝗖𝗼𝗺𝗽𝗹𝗶𝗮𝗻𝗰𝗲 𝗙𝗿𝗼𝗻𝘁𝗶𝗲𝗿 𝗨𝗻𝗱𝗲𝗿 𝗣𝗖𝗜 𝗗𝗦𝗦 𝟰.𝟬 📅 When? March 11th ⏰ 2:00 - 2:20 PM How do you 𝗮𝘂𝘁𝗼𝗺𝗮𝘁𝗲 𝗡𝗛𝗜 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆, 𝘀𝘁𝗮𝘆 𝗰𝗼𝗺𝗽𝗹𝗶𝗮𝗻𝘁, 𝗮𝗻𝗱 𝗱𝗼𝗱𝗴𝗲 𝗰𝗼𝘀𝘁𝗹𝘆 𝗯𝗿𝗲𝗮𝗰𝗵𝗲𝘀? Vini’s got the playbook. Don’t miss it. #FSISAC #PCIDSS #Cybersecurity #NonHumanIdentity #IAM #OasisSecurity

𝗡𝗛𝗜𝗠 isn’t just a buzzword it’s a 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗺𝘂𝘀𝘁-𝗵𝗮𝘃𝗲. But how does it 𝗰𝗼𝗺𝗽𝗹𝗲𝗺𝗲𝗻𝘁 𝘆𝗼𝘂𝗿 𝗜𝗚𝗔 𝘀𝘁𝗿𝗮𝘁𝗲𝗴𝘆? We break it down in our latest blog.👇

We're teaming up with Cyera, Cycode, Seemplicity, Sysdig, and Valence Security to bring some New Orleans flair to the FS-ISAC Spring Summit! Join us on 𝗠𝗼𝗻𝗱𝗮𝘆, 𝗠𝗮𝗿𝗰𝗵 𝟭𝟬, 𝟮𝟬𝟮𝟱, 𝟲:𝟯𝟬 𝗽𝗺 𝗖𝗧 for great food, jazz, and awesome company. Save your spot here: https://lnkd.in/d2HHcMP6