June 2026

19 June 2026 — Machine Identity Security now supports requesting, approving, and provisioning machine accounts directly to connected sources. Administrators can configure account subtype-specific forms, multi-stage approval workflows, and securely manage credentials, significantly improving machine identity lifecycle management.

19 June 2026 — Shadow AI Remediation now detects paste events across GenAI web applications while protecting user privacy by logging metadata only. Administrators can define sensitive keyword policies and provide end-user guidance to reduce the risk of confidential information being shared with AI tools.

19 June 2026 — Workflows introduces the new Define Comparison operator, allowing administrators to build complex conditional logic using either a guided interface or advanced JSON configuration, simplifying sophisticated automation scenarios.

12 June 2026 — Harbour Pilot now allows users with multiple accounts to choose the target account directly within conversations and provides greater transparency by displaying its reasoning process while generating responses. The service is also available in additional AWS regions, including FedRAMP environments.

12–19 June 2026 — Identity Graph received several usability improvements, including native tag filtering, graph and table view switching, export integration, filtered data tables, and exit confirmation prompts, making identity investigations more efficient.

11 June 2026 — CyberArk released critical fixes affecting Secrets Manager, Secrets Manager SaaS Edge, Central Credential Provider, and Credential Provider. Addressed vulnerabilities include token forgery, identity verification bypass, denial-of-service conditions, and potential disclosure of sensitive information.

11 June 2026 — High-severity vulnerabilities affecting PSM, PSM for SSH, Vault, and Vendor PAM Connector could allow session isolation bypass, credential disclosure, command injection, and Vault denial-of-service.

11 June 2026 — Multiple privilege escalation vulnerabilities affecting Endpoint Privilege Manager agents on Windows, macOS, and Linux were resolved in EPM Agent 26.5.

11 June 2026 — Security updates resolve vulnerabilities affecting PSM and PSM for SSH components within the Privilege Cloud Connector, strengthening session isolation protections.

11 June 2026 — Version 26.8.1 of the Identity Browser Extension remediates a vulnerability that could allow authenticated users to execute scripted actions within another user's browser session.

8 June 2026 — Desktop Application 24.32.0 introduces a refreshed interface and native Access Workflows, allowing users to request resource access directly from the client.

8 June 2026 — Added support for dynamic proxies, improving resource connectivity and simplifying deployments that rely on proxy clusters.

8 June 2026 — Resources connected through proxy clusters no longer display health check information, reducing unnecessary operational noise.

3 June 2026 — Desktop Application 23.74.1 updates the bundled StrongDM CLI, ensuring users benefit from the latest command-line functionality and compatibility improvements.