At BlackHat 2025 in Las Vegas, Matt Alderman sits down with Michael Leland, VP Field CTO at Island, to tackle one of cybersecurity’s most urgent realities: compromised credentials aren’t a possibility — they’re a guarantee. From deepfakes to phishing and malicious browser plug-ins, attackers aren’t “breaking in” anymore… they’re logging in.
Michael reveals how organizations can protect stolen credentials from being used, why the browser is now the second weakest link in enterprise security, and how Island’s enterprise browser can enforce multi-factor authentication at critical moments, block unsanctioned logins in real time, and control risky extensions with live risk scoring of 230,000+ Chrome plug-ins.
Key takeaways: Why credential compromise is inevitable — and how to stop credential use How presentation layer DLP prevents data leaks inside and outside apps Real-time blocking of phishing logins and unsanctioned SaaS access Plug-in risk scoring, version pinning, and selective extension control Enabling BYOD securely — even after a catastrophic laptop loss Why many users never go back to Chrome, Edge, or Safari after switching
Filmed at Mandalay Bay, Las Vegas, this conversation goes beyond awareness training and into practical, policy-driven defense that works in today’s AI-enhanced threat landscape.
Segment Resources: https://www.island.io/blog/how-the-enterprise-browser-neutralizes-the-risks-of-compromised-credentials
This segment is sponsored by Island. Visit https://securityweekly.com/islandbh to learn more about them!
- 0:00 - Live from BlackHat 2025, Las Vegas
- 0:35 - Meet Michael Leland, VP Field CTO at Island
- 01:10 - The harsh truth: credential compromise is inevitable
- 01:45 - From “breaking in” to “logging in” — attacker shift explained
- 02:30 - MFA strategies that actually work in the real world
- 03:15 - Phishing, smishing, and deepfake scams — trust is broken
- 04:20 - Why the browser is the second weakest link in security
- 05:05 - Real-time blocking of unsanctioned logins and credential misuse
- 06:45 - Managing risky browser extensions with live risk scoring
- 08:15 - BYOD done right — secure work on any device
- 09:40 - Final takeaways and where to learn more about Island
Michael is Field CTO at Island, bringing over 30 years of data networking, operations, and cybersecurity domain expertise. He formerly served as Head of Technical Marketing and Chief Cybersecurity Evangelist at SentinelOne where he was responsible for messaging and strategic development of their XDR product roadmap as well as the identity security portfolio. Prior to SentinelOne, he held the title of Chief Technical Strategist for McAfee. Michael was the co-founder and CTO of NitroSecurity – later acquired by McAfee – where he was responsible for developing and implementing their overall SIEM technology vision and roadmap and has held senior technical management positions at Cabletron and Avaya.
