all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Compromising Identity Provider Federation

Add to bookmarks
Nov. 8, 2023, 8:12 p.m. | Matt Johnston - Manoj Ahuje - Stephen VanVaerenbergh - Chad Yoder

Cybersecurity Blog | CrowdStrike provinggrounds.cs.sys

CrowdStrike’s Incident Response team has seen a recent increase in cases involving adversaries that abuse identity provider federation to gain access to protected services by adding and authorizing rogue domains to federation. From these cases, patterns have emerged that indicate a common attack structure. Monitoring for identity provider abuse can be difficult, given that adversaries […]

abuse access adversaries attack cases cloud security crowdstrike domains featured federation identity identity provider incident incident response incident response team monitoring patterns response rogue services structure team

Visit resource

More from provinggrounds.cs.sys / Cybersecurity Blog | CrowdStrike

Falcon Fund in Focus: Nagomi Helps Customers Maximize Their Cybersecurity Investments 5 days, 19 hours ago | provinggrounds.cs.sys
assessment automated breached breaches +21
5 Best Practices to Secure AWS Resources 1 week ago | provinggrounds.cs.sys
amazon amazon web services aws best practices +24
Porter Airlines Consolidates Its Cloud, Identity and Endpoint Security with CrowdStrike 1 week, 4 days ago | provinggrounds.cs.sys
agent airline airlines architecture +24
Secure Your Staff: How to Protect High-Profile Employees’ Sensitive Data on the Web 1 week, 4 days ago | provinggrounds.cs.sys
accounts adversary can counter +28
Deploying the Droids: Optimizing Charlotte AI’s Performance with a Multi-AI Architecture 1 week, 5 days ago | provinggrounds.cs.sys
architecture charlotte ai cybersecurity don +5
CrowdStrike Falcon Next-Gen SIEM Unveils Advanced Detection of Ransomware Targeting VMware ESXi Environments 2 weeks ago | provinggrounds.cs.sys
access advanced companies credentials +27
CVE-2024-3400: What You Need to Know About the Critical PAN-OS Zero-Day 2 weeks, 3 days ago | provinggrounds.cs.sys
april block critical cve +15
CrowdStrike Falcon Wins Best EDR Annual Security Award in SE Labs Evaluations 2 weeks, 3 days ago | provinggrounds.cs.sys
adversary and response award crowdstrike +21
CrowdStrike Extends Identity Security Capabilities to Stop Attacks in the Cloud 2 weeks, 5 days ago | provinggrounds.cs.sys
active directory attackers attacks breaches +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs