PanIAM's Blog

PanIAM's BlogEngineering notes, AWS security insights, and IAM deep dives from the team building PanIAM.https://blog.paniam.cloud/en-usProject Glasswing and the CVE Avalanche: Why Your Cloud Blast Radius Is the New Control Planehttps://blog.paniam.cloud/posts/glasswing-cve-avalanche/https://blog.paniam.cloud/posts/glasswing-cve-avalanche/Anthropic's Glasswing signals either a wave of public CVEs or a wave of silent zero-days. Either way, exploitation now outruns patching, and cloud blast-radius visibility is the control that still works.Tue, 28 Apr 2026 00:00:00 GMTcloud securityvulnerabilitiesai securityzero trustJean-Yves PASQUIERThe Blueprint Inspector: How PanIAM Secures Your Cloud Without Touching Your Datahttps://blog.paniam.cloud/posts/external-id/https://blog.paniam.cloud/posts/external-id/Over-permissioned SaaS tools are a real risk. Here's how PanIAM accesses only the configuration it needs, and how you stay in control the entire time.Mon, 13 Apr 2026 00:00:00 GMTsecuritycloud securitytrustArthur WEBERGoogle API Keys Are Now Secrets: How Gemini Changed the Ruleshttps://blog.paniam.cloud/posts/google-api-keys-are-now-secrets/https://blog.paniam.cloud/posts/google-api-keys-are-now-secrets/Google API keys were never treated as secrets — until Gemini made them dangerous. Learn how a leaked key can lead to massive bills and illegal AI usage.Thu, 12 Mar 2026 00:00:00 GMTcloud securitysecret detectiongoogle cloudJean-Yves PASQUIERThe Hidden Path: Lateral Movement Through IAM Trust Policy Modificationhttps://blog.paniam.cloud/posts/lateral-movement-trust-policy/https://blog.paniam.cloud/posts/lateral-movement-trust-policy/How attackers leverage UpdateAssumeRolePolicy to move laterally across AWS environments, and why traditional permission analysis often misses this vector.Tue, 20 Jan 2026 00:00:00 GMTlateral movementaws securityiamJean-Yves PASQUIERWhat Cybersecurity Leaders Will Do Differently in 2026https://blog.paniam.cloud/posts/do-differently-2026/https://blog.paniam.cloud/posts/do-differently-2026/Cyber threats, cloud complexity, and regulation are reshaping cybersecurity. Here’s what leaders need to rethink in 2026 to stay resilient.Wed, 07 Jan 2026 00:00:00 GMTtrendsrisk managementGil KATZIntroducing Remediations: Unified Risk Prioritization for Cloud Securityhttps://blog.paniam.cloud/posts/vuln-remediations/https://blog.paniam.cloud/posts/vuln-remediations/PanIAM now analyzes both IAM policy misconfigurations and software vulnerabilities, using real-world exploit data to help security leaders prioritize fixes by actual risk reduction.Mon, 24 Nov 2025 00:00:00 GMTfeatureJean-Yves PASQUIERNIS2: From Compliance to Competitive Advantagehttps://blog.paniam.cloud/posts/nis2/https://blog.paniam.cloud/posts/nis2/Understanding NIS2, supply-chain accountability, and why proving security matters as much as having itWed, 12 Nov 2025 00:00:00 GMTregulationcloud securityEuropeGil KATZIntroducing Side Panels: Navigate Cloud Permissions in Secondshttps://blog.paniam.cloud/posts/side-panel/https://blog.paniam.cloud/posts/side-panel/Side Panels bring cloud permission details and escalation path intelligence directly into your PanIAM workflow. What took 10 minutes in your cloud console now takes 10 seconds.Thu, 16 Oct 2025 00:00:00 GMTfeatureArthur WEBERMyth: We Have Backups and Can Just Pay the Ransom — So Ransomware Isn't a Big Threathttps://blog.paniam.cloud/posts/i_can_pay_the_ransom/https://blog.paniam.cloud/posts/i_can_pay_the_ransom/Myth about ransomware and backups.Thu, 02 Oct 2025 00:00:00 GMTmythscloud securityransomwareJean-Yves PASQUIERIntroducing Secret Detection: A New Layer of Security in Your IAM & Network Graphshttps://blog.paniam.cloud/posts/introducing-secret-detection/https://blog.paniam.cloud/posts/introducing-secret-detection/Description of a new feature in Paniam that allows secrets to be monitored as resources or used for elevation of privileges.Thu, 18 Sep 2025 00:00:00 GMTfeatureJean-Yves PASQUIERThe EU's Cyber Resilience Act: Prepare your businesshttps://blog.paniam.cloud/posts/cyber-resilience-act/https://blog.paniam.cloud/posts/cyber-resilience-act/Explaining the EU's Cyber Resilience Act and showing how PanIAM can help businesses prepareWed, 10 Sep 2025 00:00:00 GMTregulationcloud securityEuropeGil KATZDebunking the Myths: Cloud Providers Have My Backhttps://blog.paniam.cloud/posts/cloud-has-my-back/https://blog.paniam.cloud/posts/cloud-has-my-back/Exploring the myth that cloud providers ensure complete data security and availability.Mon, 04 Aug 2025 00:00:00 GMTmythscloud securityransomwareJean-Yves PASQUIERDebunking the Myths: Why SMBs are Prime Targets in the Ransomware Agehttps://blog.paniam.cloud/posts/why-smbs-are-prime-targets-in-the-ransomware-age/https://blog.paniam.cloud/posts/why-smbs-are-prime-targets-in-the-ransomware-age/Exploring the specialized ransomware ecosystem and why SMBs are prime targets. Learn how to protect your business.Wed, 09 Jul 2025 00:00:00 GMTSMBsmythsransomwareJean-Yves PASQUIER