By NHI Mgmt Group Editorial TeamPublished 2025-12-17Domain: Governance & RiskSource: Bitwarden

TL;DR: AI is making phishing, session hijacking, and over-permissioned identities easier to exploit, while runtime context is becoming essential for spotting anomalous access and lateral movement, according to Bitwarden's conversation with Rinki Sethi. The governance gap is no longer whether identities can authenticate, but whether teams can see and constrain what they do after access is granted.


At a glance

What this is: This is a practitioner interview on how AI is accelerating identity-driven attacks and why runtime identity visibility matters more than static checks.

Why it matters: It matters because IAM, NHI, and human identity programmes now face the same core problem: stolen or over-privileged access can be used faster, more convincingly, and with more contextual abuse than traditional controls expect.

👉 Read Bitwarden's conversation on AI-driven identity risk and runtime defence


Context

AI has changed the shape of identity risk by making stolen credentials, session cookies, and social engineering more scalable and more convincing. That shifts the problem from perimeter defence to runtime governance, where teams need to know what an identity is doing after it is authenticated, not just whether it passed login.

For identity programmes, the key issue is that compromised access now behaves like a shortcut to privilege. That applies to human accounts, non-human identities, and AI-assisted workflows that inherit access paths, which is why runtime telemetry and lifecycle control are increasingly linked rather than separate concerns.


Key questions

Q: How should security teams detect identity abuse after login succeeds?

A: Security teams should monitor the authenticated session, not just the login event. The useful signals are impossible travel, unusual access patterns, resource combinations that do not fit the user or workload, and sudden lateral movement from a valid identity. If you cannot observe behaviour after authentication, you are blind to the phase where most real abuse happens.

Q: Why do over-permissioned identities increase breach impact so quickly?

A: Over-permissioned identities act like master keys. When one account or token can reach many systems, compromise of a single identity can expand into data access, lateral movement, and persistence with very little friction. The issue is not only privilege amount, but the number of control domains one compromise can unlock at once.

Q: What do security teams get wrong about AI in the SOC?

A: Teams often confuse assistance with authority. AI can reduce alert fatigue, surface context, and speed investigations, but it should not be treated as a substitute for human judgment on escalation or business-impacting actions. The mistake is allowing automation to outrun accountability, especially where the consequence is not purely technical.

Q: How do identity logs help after a suspected compromise?

A: Identity logs show who accessed what, when, and from where, which makes them the first source for understanding post-authentication abuse. They help reconstruct session hijacking, privilege misuse, and lateral movement better than endpoint data alone. If the question is how far trust was extended, identity logs usually answer it first.


Technical breakdown

Credential theft and session hijacking in modern identity attacks

Attackers increasingly target credentials, tokens, and session cookies because they are easier to steal and reuse than deploying custom malware. Once a session is valid, endpoint controls often lose visibility because the attacker is operating inside an authenticated context. Session hijacking is especially difficult because the access itself appears legitimate until behaviour diverges from the expected pattern. This is why identity security has become the front door problem in cloud and SaaS environments. The real technical shift is not only initial compromise, but how quickly valid access can be turned into privilege and movement across systems.

Practical implication: build detections around session behaviour, not just authentication success.

Runtime detection for lateral movement and anomalous access

Static identity checks answer who was allowed in at provisioning time. Runtime identity telemetry answers what the identity is doing now, including impossible travel, unusual access patterns, and lateral movement from a valid session. That distinction matters because cloud breaches often start with a legitimate account and then expand through over-permissioned access or misconfiguration. Runtime control is the only layer that can reveal whether a session is behaving as an operator, an intruder, or an automated process that has gone out of bounds. Without it, teams are blind after the first login event.

Practical implication: correlate identity, workload, and secret activity in a single runtime signal path.

Agentic AI with human oversight in security workflows

The article distinguishes between AI that recommends and AI that decides. In security operations, that boundary matters because autonomous response can be useful for containment, but high-impact actions still require human oversight for context, compliance, and business consequence. The risk is not only bad automation, but misplaced confidence in AI-generated decisions that do not understand operational nuance. For identity governance, this means the control model must differentiate between assistance, automation, and actual autonomy. Only the last one changes the identity problem structurally; the others are still governance and monitoring challenges.

Practical implication: define which security actions may be automated and which must remain human-approved.


Threat narrative

Attacker objective: The attacker wants to turn one trusted identity into broad, low-friction access that bypasses endpoint defences and accelerates lateral movement.

  1. Entry begins with stolen credentials, tokens, session cookies, or convincing AI-generated social engineering that secures a valid authenticated foothold.
  2. Escalation follows when the attacker uses over-permissioned identities or misconfigurations to pivot laterally and expand access inside the environment.
  3. Impact occurs when the attacker uses legitimate-looking access to reach sensitive systems, exfiltrate data, or persist long enough to evade normal detection.

Read our 52 NHI Breaches Analysis report for a comprehensive view of breaches impacting Non-Human Identities including AI Agents.


NHI Mgmt Group analysis

Identity is now the primary attack surface because access is easier to steal than to defend. The article reinforces a basic shift in the field: attackers do not need to break the system if they can borrow a legitimate identity. That reality affects human IAM, service accounts, and AI-enabled workflows alike, because valid access now does most of the attacker’s work. Practitioners should treat identity compromise as the default breach path, not an edge case.

Runtime identity visibility is the new control plane for cloud and SaaS defence. Static permissions tell you who should be allowed to act, but they do not tell you when a valid identity starts behaving badly. The practical consequence is that configuration reviews alone cannot contain session hijacking, lateral movement, or misused tokens. Identity telemetry has to become a first-class operational signal, not an after-the-fact investigation aid.

Human-in-the-loop governance still matters because AI assistance is not the same as AI authority. The interview draws a clear line between recommendation and decision, and that line matters for escalation, compliance, and business-impacting actions. The field should resist collapsing assisted workflows into autonomous ones just because they are faster. Practitioners need to preserve accountability where consequence, not convenience, is the governing criterion.

Ephemeral trust debt is the named risk emerging from AI-accelerated identity abuse. AI compresses the time between compromise and exploitation, which means every unreviewed credential, token, or session now carries more latent blast radius. That debt accumulates when organisations assume access will be observed before it is abused. The implication is that identity governance must measure exposure at runtime, not only at issuance.

From our research:

What this signals

Ephemeral trust debt: AI compresses the time between valid access and abuse, which means identity exposure now accumulates value faster than many governance cycles can inspect it. That is why runtime controls matter more than periodic review for environments where sessions, tokens, and delegated access can be exploited in minutes, not days.

The practical signal for IAM and NHI programmes is that control ownership is converging. The same estate now contains human identities, service accounts, and AI-assisted workflows, so visibility gaps in OAuth, session governance, or privilege review affect all three categories at once. Teams that still treat these as separate disciplines will miss the shared failure mode.

For deeper structure, the NIST SP 800-207 Zero Trust Architecture model remains relevant because it shifts the focus from static trust to continuous verification. In parallel, the Ultimate Guide to NHIs , What are Non-Human Identities helps teams map where machine and delegated identities fit into that model.


For practitioners

  • Prioritise runtime identity telemetry Correlate identity, session, workload, and secret activity so you can detect behaviour that diverges from the approved access pattern. Focus on impossible travel, unusual resource access, and mid-session privilege expansion rather than login success alone.
  • Review over-permissioned accounts first Identify identities that can unlock multiple systems from a single compromise point, especially in cloud and SaaS estates. Reduce standing privilege where one token or account can pivot into broadly sensitive data or control paths.
  • Separate AI assistance from AI authority Classify which operational actions may be recommended by AI, which may be executed automatically, and which require human approval. Use that boundary to protect escalation, compliance, and business-impacting decisions.
  • Instrument identity logs for post-authentication abuse Make identity logs the first investigation source for suspicious access so analysts can answer who got in, what they touched, and how far they moved. Tie those logs to alerting on session reuse and anomalous delegation.

Key takeaways

  • Identity compromise has become the fastest path to breach impact because valid access is easier to steal than to defeat.
  • Runtime visibility is the deciding control for spotting session hijacking, lateral movement, and over-permissioned abuse after authentication.
  • AI should assist security decisions, but accountability still belongs with humans when actions carry escalation, compliance, or business risk.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST Zero Trust (SP 800-207) and NIST CSF 2.0 set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
NIST Zero Trust (SP 800-207)PR.AC-4Runtime verification is central to spotting valid-session abuse.
OWASP Non-Human Identity Top 10NHI-03Credential and token exposure drive the attack paths discussed here.
NIST CSF 2.0DE.CMContinuous monitoring is needed to detect anomalous identity activity.

Extend monitoring to identity behaviour, session reuse, and privilege drift across environments.


Key terms

  • Session Hijacking: Session hijacking is the abuse of an authenticated session so an attacker can act as if they were the legitimate identity. In identity programmes, the challenge is that the access looks valid at first, so the compromise often appears only through behavioural anomalies or downstream activity.
  • Runtime Identity Telemetry: Runtime identity telemetry is the live observation of what an identity is doing after it is authenticated. It links access, action, and context so teams can detect misuse, lateral movement, or privilege expansion that static provisioning records will never reveal.
  • Over-Privileged Identity: An over-privileged identity has more access than it needs for its normal task, which increases blast radius if the account is abused or stolen. In practice, the risk is not just excess permission, but the number of systems one compromised identity can reach before detection.
  • Human-in-the-Loop Governance: Human-in-the-loop governance is a control pattern where people retain approval or oversight for actions that carry compliance, escalation, or business consequence. It keeps AI assistance useful without treating machine output as final authority when judgement still matters.

What's in the full article

Bitwarden's full conversation covers the operational detail this post intentionally leaves for the source:

  • Rinki Sethi's direct examples of how AI is changing attacker tradecraft and defensive workflows.
  • The interview segment on runtime detection, session hijacking, and why static identity checks are no longer enough.
  • The discussion of human-in-the-loop boundaries for AI-assisted security operations and escalation decisions.
  • The rapid-fire identity investigation questions that show how a CISO prioritises post-breach analysis.

👉 Bitwarden's full interview covers runtime detection, AI-assisted SOC decisions, and human oversight in security workflows.

Deepen your knowledge

NHI governance, agentic AI identity, and machine identity lifecycle are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are responsible for identity security strategy or NHI governance in your organisation, it is worth exploring.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2025-12-17.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org