SSO Archives - Help Net Security

SSO

CircleCI breach post-mortem: Attackers got in by stealing engineer’s session cookie

January 16, 2023

The attackers who pulled off the recent breach of continuous integration and continuous delivery (CI/CD) platform maker CircleCI got in by compromising an engineer’s …

Are your cybersecurity investments making you less resilient?

October 12, 2022

In the past decade, digital transformation has become a buzzword in nearly every industry. Organizations have scaled down workforces in favor of automation, moved their …

Why are many businesses still not using a password manager?

June 3, 2022

Why are we still talking about passwords? We already have single sign-on (SSO), and passwordless is the new buzzword everyone is talking about, but when you put yourself in …

Account pre-hijacking attacks possible on many online services

May 24, 2022

Online accounts getting hijacked and misused is an everyday occurrence, but did you know that account pre-hijacking attacks are also possible? Inspired by previous research on …

Shadow IT is a top concern related to SaaS adoption

April 26, 2022

Torii announced a report revealing that 69% of tech executives believe shadow IT is a top concern related to SaaS – or cloud application – adoption. The majority of …

How to contain a privileged access breach and make sure it doesn’t happen again

March 14, 2022

When attackers pull off a privileged access breach, they have a beachhead into your network. Regardless of whether it’s software or users that are ill-protected, threat actors …

The importance of balancing security requirements and employee user experience

March 1, 2022

LastPass released the findings of an IDC survey which revealed that “balancing company security requirements and the employee user experience” is the number one identity …

How to ease password pains while maintaining security

November 4, 2021

As much as any industry, healthcare must deal with a security landscape that is fraught with challenges and tensions. Health delivery organizations (HDOs) operate under …

Organizations failing to give users the login experience they want

October 15, 2021

Companies often claim to be customer-centric, or even customer-obsessed, striving to offer technologies that their users demand. However, the findings of a recent global Auth0 …

SaaS applications investment growing despite underutilization of app licenses by employees

September 23, 2021

Business investment in SaaS applications continues to climb despite widespread underutilization of app licenses by employees. According to Productiv’s report, on average only …

Previous employees with access to corporate data remain a threat to businesses

September 2, 2021

Offboarding employees securely is a key problem for business leaders, with 40% concerned that employees who leave a company retain knowledge of passwords that grant access to …

Phishing attacks increase in H1 2021, sharp jump in crypto attacks

August 19, 2021

Overall, the first half of 2021 shows a 22 percent increase in the volume of phishing attacks over the same time period last year, PhishLabs reveals. Notably, however, …

SSO

CircleCI breach post-mortem: Attackers got in by stealing engineer’s session cookie

Are your cybersecurity investments making you less resilient?

Why are many businesses still not using a password manager?

Account pre-hijacking attacks possible on many online services

Shadow IT is a top concern related to SaaS adoption

How to contain a privileged access breach and make sure it doesn’t happen again

The importance of balancing security requirements and employee user experience

How to ease password pains while maintaining security

Organizations failing to give users the login experience they want

SaaS applications investment growing despite underutilization of app licenses by employees

Previous employees with access to corporate data remain a threat to businesses

Phishing attacks increase in H1 2021, sharp jump in crypto attacks

Don't miss

BEC scammers are after physical goods, the FBI warns

A bug revealed ChatGPT users’ chat history, personal and billing data

Known unknowns: Refining your approach to uncategorized web traffic

Prioritizing data security amid workforce disruptions

CISA releases free tool for detecting malicious activity in Microsoft cloud environments