The Latest in IT Security

SAML Post-Intrusion Attack Mirrors ‘Golden Ticket’

24
Nov
2017

02_office365_saml-680x400

Researchers at CyberArk Labs have created a post-intrusion attack technique known as a Golden SAML that could allow an attacker to fake enterprise user identities and forge authentication to gain access to valuable cloud resources in a federation environment.

Related posts:
  1. Slack Plugs ‘Severe’ SAML User Authentication Hole
  2. Fear the golden ticket attack
  3. SAML Promises to Boost Cloud Security
  4. BoundHook Attack Exploits Intel Skylake MPX Feature
  5. 3 Golden Rules For Managing Third-Party Security Risk

Read More

Tags:  
Written by Threatpost
0 Comments

Leave a reply


Categories

FRIDAY, APRIL 26, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments