Michael Bargury
Hacker, builder and a cybersecurity practitioner. He is the co-founder and CTO of Zenity, the first application security company enabling enterprises to empower business users without paying for it in security incidents. He leads the OWASP LCNC Top 10, has a column on DarkReading, and delivers research, tools and talks regularly at top conferences including BlackHat, DEFCON and RSAC.
Posts by Michael Bargury
Zenity Recognized in Gartner AI TRiSM Market Guide
Innovation, specifically the evolution of technology, has always been about expanding what’s possible or simplifying...
Remediation Ballet Is a Pas de Deux of Patch and Performance
Generative AI capabilities continue to make their way into every organization, with increasingly useful ways of...
Unboxing the Salesforce AI Cloud Announcements
On June 12th, Salesforce announced ‘AI Cloud,’ which aims to embed generative AI capabilities throughout their...
Who is Securing the Apps Built by Generative AI?
The rise of low-code/no-code platforms has empowered business professionals to independently address their needs...
Where There’s No Code, There’s No SDLC
When developing applications, organizations rely heavily on the software development lifecycle (SDLC) to engrain...
AI Has Your Business Data
Some of the world’s largest tech companies, like Google and Microsoft, have embedded AI into their business productivity...
LastPass Breach Demonstrates the Power of Avoidance
A recent LastPass breach has once again raised concerns about password managers’ security, especially commercial...
Security Teams: Don’t Impose. Empower.
Citizen development has become ubiquitous in businesses across industries, sizes and geographies. No matter what...
Anticipating Major Security Breach from Business Users’ Low-Code Apps
Here’s what that means about our current state as an industry, and why we should be happy about it Forrester Research...
Business-Led Development- an Extension of the Public Cloud
To understand this headline better we need to have a better understanding of the traditional ways we think about...
ZAPESCAPE: Organization-wide control over Code by Zapier
In the middle of March 2022, Zenity research team discovered a sandbox-escape vulnerability in Code by Zapier,...
ZAPESCAPE: Vulnerability Disclosure
Date: March 16th 2022 Severity: High Security impact: Privilege Escalation, Data Leakage, Data Manipulation Intro This...
SaaS Applications Streamline Application Development and Exploitation
Software-as-a-Service (SaaS) applications are built on the premise of streamlining business practices to improve...
When User Identity Loses Its Meaning, Hackers Win
When it comes to cybersecurity, businesses typically want to assume that every user is a special snowflake. The...
Zapier Storage Exposes Sensitive Customer Data Due to Poor User Choices
Zenity research team has recently discovered a potential customer data leakage in Storage by Zapier, a service...
Is Credential Sharing the Weakest Link in Your Security Strategy?
You might think that the majority of cybersecurity breaches result from carefully planned and executed attacks....
Microsoft Power Pages: Low-code Misconfiguration Remains a Top Security Risk
Power Pages = Portal Apps + Security? Last week Dark Reading released an enterprise application security survey...
Zenity CTO’s New Column Adds Critical Perspective on Citizen Development Security
Dark Reading is a great site to follow if you want to keep up with the latest IT security news and trends. You’ll...
Why Are Low-Code Platforms Becoming the New Holy Grail of Cyberattackers?
Why Are Low-Code Platforms Becoming the New Holy Grail of Cyberattackers? Low-code/no-code platforms for enterprise...
Low-Code vs No-Code: Is There a Difference?
For organizations to be more productive and agile in their development processes, understanding the core differences...
Why 60% of security experts are concerned about low-code/no-code apps
In Part 1 of this post, we discussed four hot trends in low-code/no-code development: the rise of citizen development,...
Where is Low-Code Going in 2022? 8 Hot Trends and Predictions (Part 2)
In Part 1 of this post, we discussed four hot trends in low-code/no-code development: the rise of citizen development,...
Where is Low-Code Going in 2022? 8 Hot Trends and Predictions (Part 1)
What’s the trick to staying competitive in 2022? The ability to quickly adjust your business models and processes. You...
Low-Code Security and Business Email Compromise via Email Auto-Forwarding
Overview Many low-code applications are built for the purpose of moving data from one place to another usually...
Bye-bye 2021, you have been a blast
What a busy year it has been for Zenity! Zenity is proud to be the first and only governance and security platform...
CTO Michael Bargury’s Thoughts on Low-Code Security Featured on Dark Reading
We are proud to have thought leaders at the head of Zenity. Michael Bargury, Zenity co-founder and CTO, recently...
Low-code is driving a tectonic shift in IT – can IT and security teams enable the business while also staying secure?
In recent years, we have witnessed a tectonic shift in the way organizations develop and maintain software. As...
The Microsoft Power Apps Portal Data Leak Revisited: Are You Safe Now?
What happened In late August 2021, a major data leak exposed where 38 million private records through Microsoft’s...
The 7 Deadly Sins of Low-Code Security and How to Avoid Them
If you’ve followed our last two blog posts, you should already be familiar with the reasons why organizations that...
Citizen Developers Security Awareness
Raising Security Awareness Among Citizen Developers Citizen developers are now producing the types of applications...
Low-Code for Dummies – An Overview of Low-Code Through Examples
Preface While the mission statement of the Zenity Low-Code Security Blog is to help organizations adopt low-code...
Hackers Abuse Low-Code Platforms And Turn Them Against Their Owners
Low-code development platforms open the way for greater independence and efficiency for business users. Unfortunately,...
Low-Code SDLC – Build Fast, Stay Secure
Low-code application development provides a solution for a wide range of business needs, from business applications...
Secure Your Agents
We’d love to chat with you about how your team can secure and govern AI Agents everywhere.
Book Demo