The Non-Human & AI Identity Journal – Edition 54

Welcome to the latest edition of our Non-Human & AI Identity Journal where we cover:  

• What is the NHI Mgmt Group up to? 

• The Non-Human & AI Identity Podcast 

• Our pick from our Non-Human & AI Identity Forum 

• Recent Breaches and Security Incidents 

• Upcoming Events, Webinars, Industry Announcements 

• NHI Foundation Level Course 

• Planning an NHI Program in 2026 

What’s Happening at the NHI Mgmt Group 

Sharing key news and events from our NHI Mgmt Group 

Webinar – Mission compliance: Governing AI before the Audit (2026-05-14) 

Our founder, Lalit Choda, will join esteemed experts Matt Fangman, Field CTO, and Devan D’Silva, Identity Strategist at SailPoint, to discuss the crucial topic of governing AI systems before they face audits.  

EIC 2026 – Non-Human & AI Identity Pavilion and Workshop (2026-05-19) — Berlin, Germany 

We are thrilled to announce our partnership with Kuppinger Cole at the EIC 2026 Conference in Berlin, where we will host an expansive Non-Human & AI Identity Pavilion and Workshop on May 19th.  

The Non-Human & AI Identity Podcast 

Mr. NHI’s Human Identity in the Hot Seat 

Justin Woody is in the hot seat this week! Justin, from Twine Security, tackles 10 rapid-fire questions on the evolving landscape of AI cybersecurity, identity management, and data privacy risks, emphasizing the need to secure AI itself. As AI reshapes digital identities and work, Justin offers actionable strategies for managing AI risks and enhancing enterprise security. Watch the episode here.

Catch up on previous episodes here and join the conversation shaping the future of NHI security. 

Recent NHI & Identity Security Breaches 

Notable breaches and security incidents highlighting the risks of unmanaged non-human identities and AI agents: 

McKinsey AI Platform Hack: A security Flaw Exposed 46M Chats and Sensitive Data 

In March 2026, McKinsey & Company’s AI platform, Lilli, suffered a significant breach when an autonomous agent exploited vulnerabilities in the system’s infrastructure, gaining unauthorized access to sensitive data, including 46.5 million chat messages and numerous files and document chunks. The breach primarily stemmed from insufficient authentication measures and weak API security, underscoring the critical need for rigorous security protocols in AI-driven platforms. This incident highlights the potential risks associated with minimal human oversight in managing machine identities and credentials, urging security professionals to prioritize robust authentication and access controls to safeguard sensitive information. 

Non-Human and AI Identity Forum Posts 

Our suggested reading for this week from our forum — with over 2,600 articles about NHIs, including Agentic AI. 

• AI Agents in Production: Understanding the Governance Illusion — Token Security 

• Unlocking Claude Code: Monitor Your AI Agents’ True Actions — Entro Security 

• Exploring AI Agents: Trust and Identity in the Digital Era — Andromeda Security 

• OpenClaw’s Rapid Rise: AI Assistant’s Security Risks Unveiled — Astrix Security

• Why Companies Are Using Untrustworthy AI Agents Anyway — Saviynt 

• Unlocking Shadow AI: Enhance Security with Hidden AI Tools — SailPoint 

• Unpacking the Mythos-Ready Briefing: Key Insights on AI Credentials — GitGuardian 

• Identity Governance and AI Security: Why Identity Governance Is the First Step to Safe AI Adoption — Clarity Security 

• How NIST CSF 2.0 Enhances Agentic AI for Autonomous Systems — Teleport 

• Vercel Attack 2026: How a Major Web Platform Was Compromised — Unosecur 

• Understanding OAuth Scopes for Secure MCP Authorization — P0 Security 

• Understanding the Vercel Breach: Why Ephemeral Secrets Matter — Akeyless 

• How Agent ID Administrator Can Secure AI Agents in Entra ID — Silverfort 

• Solving AI Security: Insights on Permissions and Prompt Injection — Oleria Security 

Latest Industry Announcements 

Major updates shaping the NHI and identity security space this week: 

• Unlocking Identity Security: Customers See 269% ROI Boost 

• Akeyless Unveils Runtime Authority: AI Agents with Intent-Aware Security 

• Securing the Agentic Workforce: Cisco Announces Intent to Acquire Astrix Security 

• Descope + Render: Build Enterprise-Ready MCP in Minutes 

• Unlocking AI + SaaS Security: Grip Security + Cyera’s Identity Integration 

• CrowdStrike Launches Project QuiltWorks to Tackle AI-Driven Cybersecurity Risks 

• Unlocking AI Security: Ping Identity’s New Runtime Identity Standard 

• Fabrix Security Joins Silverfort to Build Autonomous Identity Security Platform 

Upcoming Events and Webinars 

To support your learning journey, here are key events happening across the industry. They feature experts discussing the latest challenges and innovations in identity security: 

• Webinar – Mission compliance: Governing AI before the Audit — by SailPoint 

• Cloud Identity Governance for the AI Era: Enforcing Least Privilege at Scale — by Saviynt 

• Join Industry Leaders at Health-ISAC 2026 Spring Summit — by GitGuardian 

• Join the Identity Summit 2026 in London: Insights Await! — by Teleport 

• Protect Your Workforce: 3 Key Strategies Against Identity Threats — by Ping Identity 

• Discover the Future of Autonomous Defense at Agentic SOC Summit — by CrowdStrike 

The Most Comprehensive & Only CPD-Certified NHI Course 

Our CPD Certified NHI Foundation Level course delivers practical guidance on governing, managing, and securing NHIs, including AI agents. Developed by Mr NHI, it’s designed for beginners, security professionals, and IT leaders, with hundreds of learners and an average 5-star rating. 

Enroll here 

Are you planning a NHI Program in 2026 including Agentic AI? 

As the premier authority on Non-Human Identities, with over 20 years of hands-on experience managing $10M–$20M+ global NHI programs, we offer independent guidance and advice tailored to your needs. Our expertise spans risk and maturity assessments, program initiation and hands-on execution, ensuring your organisation stays ahead of evolving threats and maximises risk reduction. Reach out here for a free initial consultation.