News

Critical Samlify SSO flaw lets attackers log in as admin
A critical Samlify authentication bypass vulnerability has been discovered that allows attackers to impersonate admin users ...
CSOonline1y
The SSO tax is killing trust in the security industry
During testing, we found that some application providers that enable SAML integrations with SSO providers don’t provide the security controls we believed would be in place. They force us to pay ...
Virtualization Review1d
The SaaS Cybersecurity Kill Chain
Paul Schnackenburg, working in the IT trenches every day as a 1-person SoC, looks at how the cybersecurity kill chain is ...
Security Boulevard7d
Online Cyber Security: Calculating Return on Investment for SSO Implementations
Single sign-on (SSO) simplifies user access by providing one login for many applications. SSO improves online cyber security by reducing password fatigue, decreasing the attack surface of multiple ...
Cisco Duo Reimagines Identity Security to Combat AI Era Threats
Cisco (NASDAQ: CSCO), the leader in security and networking, today unveiled Duo Identity and Access Management (IAM), a new ...
Bleeping Computer2y
Minimizing the security risks of Single Sign On implementations
Single Sign On (SSO) was originally introduced as a tool for both user convenience and improved security. The idea was that rather than requiring users to memorize numerous, complex and frequently ...
Business Wire6mon
New Security Alert from Push Security: Cross-IdP Impersonation Threatens SSO Security to Gain Unauthorized Access to Downstream Apps
Security tests on the most popular applications used by Push customers revealed that 3 in 5 of the apps tested do not require re-verification by default when adding a new SSO login method ...
Hackaday4mon
This Week In Security: Rsync, SSO, And Pentesting Mushrooms
Other SSO solutions may have the same quirk ... Arctic Wolf has provided additional IoCs, so time to go hunting. There’s another security device under attack this week, as watchTowr labs ...