Tenant Invitations and the Hidden Risk of Cross-Tenant Identity Confusion
Ethical hacker Firas Fatnassi explores how invitation workflows can create an identity foothold, and how that foothold can expose deeper tenant isolation flaws caused by inconsistent identity…
Read the full articleYou might also wanna read
Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants
Cybersecurity researchers have disclosed details of a now-patched critical session isolation vulnerability in Writer, an enterprise generati
MCP Multi-Tenant Architecture: Per-Tenant Isolation, Shared Servers, OAuth Identity Propagation, and SaaS Deployment Patterns
A comprehensive guide to MCP multi-tenant architecture — covering isolation models (dedicated instance, pooled, hybrid), tenant-aware routin
Entra Agent ID: Inside a cross-tenant agent compromise
Continuing our Agent ID series, this post demonstrates how a privileged agent could be compromised through its third-party blueprint. This l

Securing Agent Identities in the Lakehouse
> **Cross-posted.** This article's canonical home is [Data Lakehouse Hub](
User-level vs org-level auth in API integrations
Whose credentials should your API integration use? The five identity models we see in production, and when to choose each one.
Understanding Sandbox Isolation: A Spectrum of Approaches from Linux Namespaces to WebAssembly
A dive into the spectrum of sandboxing and isolation, from Linux namespaces and gVisor to hardware-enforced microVMs and WebAssembly, and wh

Comments
Sign in to join the conversation.
No comments yet. Be the first.