single sign-on (SSO)

Vulnerability Found in Single-Sign-On Products

On: February 28, 2018

In: Data Security

A peculiarity in SAML libraries has left many single-sign-on (SSO) implementations vulnerable to abuse. It allows an attacker that has gained any authenticated access to trick the system into grantingRead More →

OneLogin suffers breach—customer data said to be exposed, decrypted

On: June 2, 2017

In: Vulnerabilities

Customer account-only support page warns of “ability to decrypt encrypted data.” OneLogin has admitted that the single sign-on (SSO) and identity management firm has suffered a data breach. However itsRead More →