Vulnerabilities in Single Sign-On Services Could be Abused to Bypass Authentication

Vulnerabilities
Share It On:

25th April 2021, Kathmandu

Vulnerabilities in Single Sign-On services could be abused to bypass authentication controls

A category of vulnerability detected in a number of Single Signal-On (SSO) companies may enable attackers to hack into company techniques, safety researchers at NCC Group warn.

SSO expertise is a strategy for authentication and identification administration that enables enterprise customers to entry to an array of company functions via a single (usually third-party) service.

The expertise, which has been extensively adopted amongst enterprises, affords comfort to customers as a result of it will get around the necessity to handle a number of office passwords.

In addition to reducing down on helpdesk calls, the expertise affords a solution to handle credentials and privileges from a single location and will increase safety – a minimum of in concept.

Safety researcher Adam Roberts of NCC Group has found related vulnerabilities in a number of SSO companies that depend on Safety Assertion Markup Language (SAML) to authenticate customers.

These implementation flaws create a possible means to interrupt into techniques and trigger all methods of mischief, Roberts warns in a technical blog post.


Share It On:

Leave a Reply

Your email address will not be published. Required fields are marked *

Recent Posts

NCHL Partner IMS Software to Integrate Dynamic NEPALPAY QR in Billing System
Banking & Insurance Latest News Top News

NCHL Partner IMS Software to Integrate Dynamic NEPALPAY QR in

Share It On:20 July 2024, Kathmandu Nepal Clearing House Ltd (NCHL) and IMS Software Private Limited (IMS) have partnered to

Foodmandu Student Apprenticeship Program: Gain Marketing & Entrepreneurship Experience
Latest News Top News

Foodmandu Student Apprenticeship Program: Gain Marketing & Entrepreneurship Experience

Share It On:20 July 2024, Kathmandu Launch your career! Foodmandu’s Student Apprenticeship Program offers hands-on experience in marketing, entrepreneurship, and

Vriddhi Sanjal Sign Kathmandu University To Establish Innovation Hub
Latest News Top News

Vriddhi Sanjal Sign Kathmandu University To Establish Innovation Hub

Share It On:20 July 2024, Kathmandu Vriddhi Sanjal Pvt. Ltd. (VSP) and Kathmandu University (KU) have signed a Memorandum of

Muktinath Bikas Bank Partners Fonepay For UPI Acceptance in Nepal
Banking & Insurance Latest News Top News

Muktinath Bikas Bank Partners Fonepay For UPI Acceptance in Nepal

Share It On:20 July 2024, Kathmandu Muktinath Bikas Bank Ltd. has signed a significant agreement with Fonepay to enable Unified

Global IME Bank Digital Universe – Experience The Future of Banking in Nepal
Banking & Insurance Latest News Top News

Global IME Bank Digital Universe – Experience The Future of

Share It On:19 July 2024, Kathmandu Experience the future of banking with Global IME Bank’s Digital Universe! Manage accounts, pay

Siddhartha Bank Digital Payment Gets You Up to 25% Off at Aarus Lifestyle Hospital
Banking & Insurance Latest News Top News

Siddhartha Bank Digital Payment Gets You Up to 25% Off

Share It On:19 July 2024, Kathmandu Siddhartha Bank customers can now enjoy up to 25% off on services at Aarus