Emily Yale and Chris Bukavich from Microsoft discuss the cybersecurity concerns surrounding non-human identities, also known as service principal accounts and machine identities. They highlight the unique challenges these identities pose, including their exemption from standard user account policies, shared usage, elevated privileges, and lack of multi-factor authentication protection. The speakers share insights from the Microsoft Enterprise SOC team’s experience in hunting and responding to increased abuse of non-human identities by Nation State adversaries. They discuss the use of real-time analytics and machine learning in detection engineering to identify anomalous activity amidst a high volume of events. The talk also covers the investigation and remediation of non-human identity compromises, shedding light on the challenges of modeling access and securing identity for the future.