An advisory from the U.S. National Security Agency provides Microsoft Azure administrators guidance to detect and protect against threat actors looking to access resources in the cloud by forging ...

A new technique called "Golden SAML" lets attackers forge authentication requests and access the cloud-based apps of companies that use SAML-compatible domain controllers (DCs) for the authentication ...

Threat actors are stealing authentication tokens already verified by multifactor authentication (MFA) to breach organizations' systems. A new alert from Microsoft Detection and Response Team (DART), ...

NIST and CISA release a draft interagency report for public comment on protecting authentication tokens from tampering, theft, and misuse.

Thousands of customer-facing Android and iOS mobile apps — including banking apps — have been found to contain hardcoded Amazon Web Services (AWS) credentials that would allow cyberattackers to steal ...

If you want to use single sign-on with Microsoft’s clouds, the go-to method is a Microsoft product called Microsoft Windows Active Directory Federation Services 2.0 (ADFS). RSA on Monday announced ...

As businesses around the world have shifted their digital infrastructure over the last decade from self-hosted servers to the cloud, they’ve benefitted from the standardized, built-in security ...

Microsoft’s cloud services have come under scrutiny in recent months, with APIs at the heart of the matter. Here are some strategies to help mitigate security issues that can arise when using APIs.

With no shortage of cybersecurity risks in state and local government, state CIOs expect enterprise identity and access management solution adoption or expansion to be the cybersecurity initiative ...

The flaw (CVE-2020-15157) is located in the container image-pulling process. A security vulnerability can be exploited to coerce the containerd cloud platform into exposing the host’s registry or ...