Security Boulevard

FEBRUARY 2, 2024

Microsoft Breach — What Happened? What Should Azure Admins Do? On January 25, 2024, Microsoft published a blog post that detailed their recent breach at the hands of “Midnight Blizzard”. We don’t know from Microsoft’s blog post how exactly this user was able to do this.

Authentication 75

Authentication Architecture Technology Passwords 75

Troy Hunt

MARCH 13, 2019

Is this really what we want? Do you know how hard it is to explain OAuth to technical people, let alone the masses? Oh wait - it's not OAuth - it's Oath but even I didn't get that at first because nobody really reads these warnings anyway! And now that I have read it and I know it's Oath, what does that really mean?

Banking 248

Banking VPN Risk Advertising 248

Security Boulevard

OCTOBER 18, 2022

And what is more concerning is how the SaaS service layer can create systemic cloud risk, because of the unmatched privilege to control business and information systems via SaaS services. Four Priorities for Cloud Security Architecture. Cloud security is the center of attention for most organizations. weak credentials or SSO violations). ?.

Architecture 52

Architecture Technology Risk Accountability 52

Elie

MARCH 10, 2018

This series of posts recounts how, in November 2016, we hunted for and took down Gooligan, the infamous Android OAuth stealing botnet. What makes Gooligan special is its weaponization of OAuth tokens, something that was never observed in mainstream crimeware before. What are Oauth tokens? and the analysis of.

Malware 107

Malware Adware Accountability Backups 107

Elie

MARCH 10, 2018

This series of posts recounts how, in November 2016, we hunted for and took down Gooligan, the infamous Android OAuth stealing botnet. What makes Gooligan special is its weaponization of OAuth tokens, something that was never observed in mainstream crimeware before. What are Oauth tokens? and the analysis of.

Malware 91

Malware Adware Accountability Backups 91

Duo's Security Blog

MARCH 7, 2024

Let's delve into what this means for organizations and how solutions like Duo SSO are designed to mitigate such risks. What is the Silver SAML vulnerability? In cybersecurity, the constant emergence of new vulnerabilities keeps organizations on their toes. Stay up to date with the latest security advisories and updates.

Risk 109

Risk Authentication Architecture Education 109

Security Boulevard

MARCH 6, 2024

Photo by Andrew Chiles Did you know that it is possible to perform every step in Entra’s OAuth 2.0 While this automation works today, slight changes in the future may require updates to the code in this blog post. Zugspitze, Bavaria, Germany. Device Code flow — including the user authentication steps — without a browser?

Authentication 59

Authentication Passwords Mobile Technology 59

Security Boulevard

FEBRUARY 2, 2024

We reviewed the information Microsoft’s team provided in their post which contained details significant enough to explain what likely resulted in the compromise of their environment. What Happened and What is the Attack Path? I’ll provide an extremely abbreviated version below.

Risk 64

Risk Cybersecurity 64

Security Boulevard

MAY 25, 2022

Back in February of 2020 Karl Fosaaen published a great blog post about abusing Managed Identity (MI) assignments, specifically those assigned to a Virtual Machine running in Azure. On May 15th, Marius Sandbu published a blog post where he talks about responding to an incident where a real adversary was abusing this exact scenario.

Architecture 111

Architecture Cybersecurity 111

Security Boulevard

SEPTEMBER 7, 2021

What every developer should do before they start writing code. I talk a lot about finding and fixing vulnerabilities on my blog. But what can you do to prevent vulnerabilities way before they happen? Let’s say that you are building a messaging app, what are your application requirements? Are you going to use OAuth?

Authentication 52

Authentication Passwords Software Engineering 52

Security Affairs

MAY 22, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice. Pierluigi Paganini.

Ransomware 72

Ransomware Firewall Hacking Malware 72

Security Boulevard

AUGUST 3, 2022

The Twitter API provides direct access to a Twitter account and OAuth tokens are used by the Twitter API for authentication. OAuth ("Open Authorization") is an open standard for authorization and is commonly used to grant API access. It works over HTTPS and authorizes devices, APIs, servers, and applications. . The vulnerability.

Mobile 98

Mobile Authentication Accountability Identity Theft 98

Security Affairs

APRIL 6, 2023

The discovered OAuth endpoint URL and token for business metrics could help malicious actors access private commercial information. A digital identification tool provided by OCR Labs to major banks and government agencies leaked sensitive credentials, putting clients at severe risk.

Banking 84

Banking Financial Services Identity Theft Accountability 84

Duo's Security Blog

JANUARY 11, 2024

What are customers saying from the top? So, what are we seeing from our customers as they navigate this shift? Scaling a cybersecurity mountain is an arduous but essential task for organizations. It requires careful planning, thorough preparation, and the right gear. Let's delve into the base camp chatter.

Authentication 107

Authentication Cybersecurity Architecture Accountability 107

Centraleyes

MAY 20, 2024

What is An IAM Assessment? Did you know that 80% of breaches exploit legitimate identities and are difficult to detect? It’s hard to tell a hacker from a legitimate user’s behavior using regular security procedures and technologies. An IAM assessment aims to analyze access control and authorization processes.

Data breaches 52

Data breaches Accountability Authentication Healthcare 52

Pentester Academy

JANUARY 19, 2023

Technical difficulty: | Novice | Beginner | Competent | Proficient | Expert What Is AWS Secrets Manager? How To Use AWS Secrets Manager was originally published in Pentester Academy Blog on Medium, where people are continuing the conversation by highlighting and responding to this story. Step 3: Try to interact with metadata services.

Passwords 52

Passwords Risk Engineering Cybersecurity 52

Security Boulevard

JUNE 6, 2022

In this three part blog series we will explore attack paths that emerge out of Managed Identity assignments in three Azure services: Automation Accounts, Logic Apps, and Function Apps. But first, what exactly are Managed Identities? The AZSec blog talked about abusing automation accounts for lateral movement here in November 2021.

Accountability 52

Accountability Authentication Cybersecurity 52

Cisco Security

JUNE 15, 2021

Everyone has been using and abusing the “next-generation” qualifier to describe any modern firewall product for far too long, so it is appropriate to drop this extraneous prefix and talk about what truly comes next for this technology. After all, the cloud is just your stuff running in someone’s else data center. Insert Your Firewall Here.

Firewall 131

Firewall Software Network Security Encryption 131

ForAllSecure

MARCH 29, 2023

In the following sections, we will discuss: API Basics Common API Security Vulnerabilities Best Practices for API Security How to do API Security Automatically By the end of this blog post, you will have a good understanding of API security and the steps you can take to easily secure your APIs. API Basics: What Is an API and How Do APIs Work?

Authentication 40

Authentication Passwords Encryption Software 40

Cisco Security

DECEMBER 22, 2022

A paradox at the Black Hat, we do not want to block malicious content as it could be part of exercises or training classes, quite a different mindset as what we, security defenders, are used to! After opening the client’s profile, we saw what SSID and access point (AP) they were connected to using the Meraki location map.

DNS 71

DNS Malware Accountability Wireless 71

McAfee

APRIL 3, 2020

I won’t discuss functionality in this blog – there are many places to find those comparisons, instead I will focus on the information you should review from a security and privacy point of view. Offer Identity federation (SAML & OAUTH for example) to integrate with your authentication systems. Make sure to read the fine print!

Encryption 53

Encryption Penetration Testing Authentication Firewall 53

Spinone

JULY 8, 2020

What is HIPAA? What about G Suite services like Gmail, Calendar, Keep, Hangouts, Vault, and others? What is the Health Insurance Portability and Accountability Act (HIPAA)? What is the Health Insurance Portability and Accountability Act (HIPAA)? HIPAA includes the following five main directives: 1.

Encryption 52

Encryption Backups Accountability Ransomware 52