banner1
Logo Blinking Image
banner2

HOME
Case Study

Golden SAML: Newly Discovered Attack Technique Forges Authentication to Cloud Apps

by VARINDIA 2017-11-22
Golden SAML: Newly Discovered Attack Technique Forges Authentication to Cloud Apps

In this blog post, we introduce a new attack vector discovered by CyberArk Labs and dubbed “golden SAML.” The vector enables an attacker to create a golden SAML, which is basically a forged SAML “authentication object,” and authenticate across every service that uses SAML 2.0 protocol as an SSO mechanism.

 

DOWNLOAD PDF HERE

er

See What’s Next in Tech With the Fast Forward Newsletter

SECURITY
View All
Scalefusion’s new brand film redefines SaaS storytelling by visualizing a unified management future

Scalefusion’s new brand film redefines SaaS storytelling by visualizing a unified management future

CyberArk expands its Machine Identity Security portfolio with new capabilities

CyberArk expands its Machine Identity Security portfolio with new capabilities

Barracuda announces ‘Barracuda Research’ for global threat intelligence and insights

Barracuda announces ‘Barracuda Research’ for global threat intelligence and insights

SOFTWARE
View All
Zendesk unveils powerful new AI capabilities within the resolution platform to accelerate service at scale

Zendesk unveils powerful new AI capabilities within the resolution platform to accelerate service at scale

OutSystems powers India’s first fully paperless mortgage platform for Grihum Housing Finance

OutSystems powers India’s first fully paperless mortgage platform for Grihum Housing Finance

SolarWinds launches AI agent and expands AI capabilities to advance autonomous operational resilience

SolarWinds launches AI agent and expands AI capabilities to advance autonomous operational resilience

START - UP
View All
Tally Solutions with Rukam Capital to empower Indian startup ecosystem

Tally Solutions with Rukam Capital to empower Indian startup ecosystem

Ex-Twitter CEO Parag Agrawal Unveils AI-Focused Startup Parallel Web Systems

Ex-Twitter CEO Parag Agrawal Unveils AI-Focused Startup Parallel Web Systems

Travel tech startup Teleport acquired by StampMyVisa

Travel tech startup Teleport acquired by StampMyVisa

Tweets From @varindiamag

CIO - SPEAK
Automation has the potential to greatly improve efficiency and production

Automation has the potential to greatly improve efficiency and production

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

wew
wrdf
Start-Up and Unicorn Ecosystem
Bollywood Stars Move Court to Protect Personality Rights

Bollywood Stars Move Court to Protect Personality Rights

Trump's $100K H-1B Fee Hits India's IT Sector

Trump's $100K H-1B Fee Hits India's IT Sector

AI in Cybersecurity: Balancing Innovation and Threats in 2025

AI in Cybersecurity: Balancing Innovation and Threats in 2025

India Set to Lead as Global Center of Excellence in Data Privacy

India Set to Lead as Global Center of Excellence in Data Privacy

Insurance Claim Rejection Over Google Data Sparks Privacy Row

Insurance Claim Rejection Over Google Data Sparks Privacy Row

FraudGPT and WormGPT Usher in AI Cybercrime Era

FraudGPT and WormGPT Usher in AI Cybercrime Era

India's Technology Revolution: How Top 20 Companies Are Reshaping the Digital Landscape

India's Technology Revolution: How Top 20 Companies Are Reshaping the Digital Landscape

CLS 2026 : 40 Tech Segments Shaping the Channel

CLS 2026 : 40 Tech Segments Shaping the Channel

Channel Partners: Turbocharging India’s Tech Boom

Channel Partners: Turbocharging India’s Tech Boom

Payments 2030: What’s Shaping the Future?

Payments 2030: What’s Shaping the Future?

dsf