Vulnerabilities in Single Sign-On Services Could be Abused to Bypass Authentication

Vulnerabilities
Share It On:

25th April 2021, Kathmandu

Vulnerabilities in Single Sign-On services could be abused to bypass authentication controls

A category of vulnerability detected in a number of Single Signal-On (SSO) companies may enable attackers to hack into company techniques, safety researchers at NCC Group warn.

SSO expertise is a strategy for authentication and identification administration that enables enterprise customers to entry to an array of company functions via a single (usually third-party) service.

The expertise, which has been extensively adopted amongst enterprises, affords comfort to customers as a result of it will get around the necessity to handle a number of office passwords.

In addition to reducing down on helpdesk calls, the expertise affords a solution to handle credentials and privileges from a single location and will increase safety – a minimum of in concept.

Safety researcher Adam Roberts of NCC Group has found related vulnerabilities in a number of SSO companies that depend on Safety Assertion Markup Language (SAML) to authenticate customers.

These implementation flaws create a possible means to interrupt into techniques and trigger all methods of mischief, Roberts warns in a technical blog post.


Share It On:

Recent Posts

Liberty Energy Rights Shares Offering: Eligibility, Application Process, and Future Plans

Liberty Energy Rights Shares Offering: Eligibility, Application Process, and Future

Share It On:22nd November 2024, Kathmandu Liberty Energy Company Limited is gearing up to issue rights shares starting December 1,

Asha Laghubitta’s 8th AGM 2024: Key Decisions and Future Plans

Asha Laghubitta’s 8th AGM 2024: Key Decisions and Future Plans

Share It On:22nd November 2024, Kathmandu Asha Laghubitta Bittiya Sanstha is holding its 8th Annual General Meeting (AGM) today, November

6th Asian Population Conference 2024 in Nepal: Advancing Sexual and Reproductive Health Policies

6th Asian Population Conference 2024 in Nepal: Advancing Sexual and

Share It On: 21st November, Kathmandu Nepal is set to host the 6th Asian Population Conference from November 27 to

Kumari Bank Promoter Share Sale: Eligibility, Application Process, and Price

Kumari Bank Promoter Share Sale: Eligibility, Application Process, and Price

Share It On:21st November, Kathmandu Kumari Bank Limited has officially declared its intention to sell a substantial number of promoter

Up to NPR 150 Cashback on Nepal Telecom and Ncell Services with Namaste Pay

Up to NPR 150 Cashback on Nepal Telecom and Ncell

Share It On:21st November, Kathmandu Namaste Pay has unveiled an exciting new campaign to reward its users with cashback on

Ncell introduces innovative feature, enabling customers to convert voice to data or data to voice services

Ncell introduces innovative feature, enabling customers to convert voice to

Share It On:21st November, Kathmandu Ncell customers can enjoy an innovative feature that allows them to convert or exchange remaining