According to Security Magazine, the typical business user oversees 191 passwords for work-related purposes and dozens more for personal ones. Up to 5 million passwords may be used by staff members of a company with 25,000 employees. Given the prevalence of passwords, password vulnerabilities are a major contributor to security breaches that result from cyber-attacks. [...] Read More →
Managing Access to Legacy and Cloud Applications Enterprises/Organizations' needs to preserve and grow virtual workforces while protecting digital transformation efforts have constantly fuelled the IAM market. As a result, numerous standards and methodologies for ensuring access for businesses have been developed.  With the advent of web applications in the industry in the early 1990s, companies [...] Read More →
SCIM or The System for Cross-domain Identity Management (SCIM) is a standard designed to easily manage user identity information present in cloud apps or services. SCIM provides a secure and standard method to exchange the user identity information between the identity providers and your cloud/SaaS applications.   How SCIM Works? SCIM automates the process of [...] Read More →
    The acceleration of digital transformation brings about new challenges and risks for many users. Without the right tools and strategy, you might become vulnerable to the various threats in cyberspace. This can result in serious consequences such as data breaches, identity theft, and loss. Hence, 84% of businesses are focusing on strengthening their [...] Read More →
Every day, data breaches, identity theft, and online fraud become increasingly widespread. Every year, millions of credentials are stolen or phished. In this climate, it is evident that more than password-based protection is required for employees, partners, and customers to access essential online resources. Risk-Based Authentication (RBA), also known as Adaptive Authentication, is an authentication [...] Read More →
JIT provisioning automates the creation and updation of user accounts in web applications. It delivers information from an identity provider to web apps via the SAML (Security Assertion Markup Language) protocol. IT administrators no longer have to manually create accounts for each user in every application thanks to JIT provisioning. Rather, user accounts are created [...] Read More →
What is IDaaS? IDaaS - Identity-as-a-Service, refers to identity management and access management services offered via the cloud rather than on-premises. Identity services maintain the information related to digital entities. In this form, it can be accessed and used in electronic transactions. An "as-a-service" model represents an operation where an external organization provides a service [...] Read More →
On September 2021, an attacker published credentials for 87,000 FortiGate SSL VPN devices online and created a huge threat to VPN Security by exploiting a known, old vulnerability. Investigators concluded that the credential was obtained by exploiting CVE-2018-13379, a vulnerability that allows unauthenticated attackers to download system files via specially crafted HTTP resource requests. Its [...] Read More →