Securing Hybrid Identity Before Attackers Strike

TrustedSec's Metcalf on How Technical Debt Creates Identity Breach Opportunities Tom Field (SecurityEditor) • December 30, 2025

Enterprises often overlook identity weaknesses that create easy access for attackers. Sean Metcalf, identity security architect at TrustedSec, said technical debt in Active Directory and Entra ID can create exploitable paths when admin tools and hybrid cloud components are left exposed.

See Also: Proof of Concept: Rethinking Identity for the Age of AI Agents

Misconfigured permissions, outdated service accounts and unsecured administrative access are still common. Admins often use standard workstations for high-privilege access, allowing attackers to exploit browser sessions. Hybrid identity sync tools, like those from Microsoft or Okta, also pose risks when left unmonitored or treated like ordinary systems. Metcalf said organizations should treat these systems like privileged assets and harden them accordingly.

"Too many administrators, too many accounts … every one of them is an opportunity for an attacker to compromise ...