Ncell

Vulnerabilities in Single Sign-On Services Could be Abused to Bypass Authentication

Vulnerabilities
Share It On:

25th April 2021, Kathmandu

Vulnerabilities in Single Sign-On services could be abused to bypass authentication controls

A category of vulnerability detected in a number of Single Signal-On (SSO) companies may enable attackers to hack into company techniques, safety researchers at NCC Group warn.

SSO expertise is a strategy for authentication and identification administration that enables enterprise customers to entry to an array of company functions via a single (usually third-party) service.

The expertise, which has been extensively adopted amongst enterprises, affords comfort to customers as a result of it will get around the necessity to handle a number of office passwords.

In addition to reducing down on helpdesk calls, the expertise affords a solution to handle credentials and privileges from a single location and will increase safety – a minimum of in concept.

Safety researcher Adam Roberts of NCC Group has found related vulnerabilities in a number of SSO companies that depend on Safety Assertion Markup Language (SAML) to authenticate customers.

These implementation flaws create a possible means to interrupt into techniques and trigger all methods of mischief, Roberts warns in a technical blog post.


Share It On:
Worldlink
NMB Bank

Recent Posts

See More
Citizens Bank 11.11 Deals: Exclusive Discounts on Daraz

Citizens Bank 11.11 Deals: Exclusive Discounts on Daraz

Share It On:5th November 2024, Kathmandu Citizens Bank International Limited signed an agreement with Nepal’s leading online marketplace, Daraz, to

Local Talent Shines in Cybersecurity: Bipu Ojha and Tuan Khuat Win CDU IT CodeFair CTF

Local Talent Shines in Cybersecurity: Bipu Ojha and Tuan Khuat

Share It On:5th November 2024, Kathmandu Bipu Ojha and his teammate Tuan Khuat have emerged as winners in the prestigious

CEDB Hydropower’s Extraordinary General Meeting Concluded: Five Directors Elected

CEDB Hydropower’s Extraordinary General Meeting Concluded: Five Directors Elected

Share It On: 5th November 2024, Kathmandu CEDB Hydropower Development Company Limited has successfully concluded its extraordinary general meeting. CEDB

Government’s Journalist Accident Insurance Program: Apply Now For Your Protection

Government’s Journalist Accident Insurance Program: Apply Now For Your Protection

Share It On: 5th November, Kathmandu The Department of Information and Broadcasting has announced the launch of a new insurance

Nepal Life’s Property Acquisition in Hetauda: A Strategic Move For Growth

Nepal Life’s Property Acquisition in Hetauda: A Strategic Move For

Share It On:5th November, Kathmandu Nepal Life Insurance, a leading life insurance company in Nepal, has recently expanded its footprint

Global IME Dividend Announcement: Key Book Closure Date Revealed

Global IME Dividend Announcement: Key Book Closure Date Revealed

Share It On:5th November 2024, Kathmandu Global IME Bank has good news for its shareholders! The bank has announced a

TVS Naya Yug Ko Aarambha 2024: Lucky Winners Announced

TVS Naya Yug Ko Aarambha 2024: Lucky Winners Announced

India’s EV Landscape Expands: Maruti and Mahindra’s Upcoming Launches

India’s EV Landscape Expands: Maruti and Mahindra’s Upcoming Launches

CG Motors Dashain Tihar Offer 2024: Chance to Win Big With Hero Motorcycles

CG Motors Dashain Tihar Offer 2024: Chance to Win Big

KTM Nepal’s Track Test Experience 2024: Uniting Enthusiasts For Thrills and Safety

KTM Nepal’s Track Test Experience 2024: Uniting Enthusiasts For Thrills

Great Himalayan Odyssey 2024: Bajaj Dominar’s First Motorcycle Journey to Ladakh

Great Himalayan Odyssey 2024: Bajaj Dominar’s First Motorcycle Journey to

Sudhir Parajuli Elected ISPAN President

Sudhir Parajuli Elected ISPAN President

Namaste Pay Flight Ticket Cashback of NPR 100 Campaign

Namaste Pay Flight Ticket Cashback of NPR 100 Campaign

Nepal Telecom Signs With And Nepal Army

Nepal Telecom Signs With And Nepal Army