HOME
Case Study

Golden SAML: Newly Discovered Attack Technique Forges Authentication to Cloud Apps

by VARINDIA 2017-11-22
Golden SAML: Newly Discovered Attack Technique Forges Authentication to Cloud Apps

In this blog post, we introduce a new attack vector discovered by CyberArk Labs and dubbed “golden SAML.” The vector enables an attacker to create a golden SAML, which is basically a forged SAML “authentication object,” and authenticate across every service that uses SAML 2.0 protocol as an SSO mechanism.

 

DOWNLOAD PDF HERE

See What’s Next in Tech With the Fast Forward Newsletter

SECURITY
View All
Sophos MDR with new enhancements defends 26,000 customers worldwide

Sophos MDR with new enhancements defends 26,000 customers worldwide

Windows 10’s End-of-Life Warning: Update Needed Now

Windows 10’s End-of-Life Warning: Update Needed Now

Four arrested in Rs 12.5 Cr CRED fraud case

Four arrested in Rs 12.5 Cr CRED fraud case

SOFTWARE
View All
RISE with SAP on IBM Power Virtual Server to help customers accelerate their ERP transformation

RISE with SAP on IBM Power Virtual Server to help customers accelerate their ERP transformation

Telegram begins 2025 with collectible gifts, advanced filters, and other exciting features

Telegram begins 2025 with collectible gifts, advanced filters, and other exciting features

GitHub announces a new free tier for GitHub Copilot in VS Code

GitHub announces a new free tier for GitHub Copilot in VS Code

START - UP
View All
Panasonic selects 12 startups as part of 2nd cohort of "PANASONIC IGNITION"

Panasonic selects 12 startups as part of 2nd cohort of "PANASONIC IGNITION"

OYO acquires G6 Hospitality for $525 million, expands global presence

OYO acquires G6 Hospitality for $525 million, expands global presence

KSUM-backed poster maker Wizad clocks 1 lakh downloads

KSUM-backed poster maker Wizad clocks 1 lakh downloads

Tweets From @varindiamag

CIO - SPEAK
Automation has the potential to greatly improve efficiency and production

Automation has the potential to greatly improve efficiency and production

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Start-Up and Unicorn Ecosystem
The Dolby Atmos Battle: Samsung & Google Enter the Fray

The Dolby Atmos Battle: Samsung & Google Enter the Fray

Optiemus with Germany based LS Spectrum to launch drone-based spectrum analyzers in India

Optiemus with Germany based LS Spectrum to launch drone-based spectrum analyzers in India

Sahana System to deliver advanced IT solutions for toll infrastructure

Sahana System to deliver advanced IT solutions for toll infrastructure

5 Fintech Platforms That Will Transform the InsurTech Sector in 2025

5 Fintech Platforms That Will Transform the InsurTech Sector in 2025

LTTS expands its collaboration with Siemens

LTTS expands its collaboration with Siemens

COLORFUL rolls out iGame Shadow DDR5 memory series

COLORFUL rolls out iGame Shadow DDR5 memory series

Micromax and Phison introduce MiPhi for next-gen NAND storage

Micromax and Phison introduce MiPhi for next-gen NAND storage

India surpasses US, Canada in malware targets

India surpasses US, Canada in malware targets

Banks Need a Strategic Approach to Combat Mule Accounts

Banks Need a Strategic Approach to Combat Mule Accounts

The Future of Data Agents in Enterprise AI

The Future of Data Agents in Enterprise AI