Fortinet Confirms New Zero-Day Behind Malicious SSO Logins
To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single sign-on (SSO) authentication for all devices.
SSO lets one identity access multiple services, reducing password reuse while making account, session, and identity-provider security critical.
Search across headline titles and summaries.
Background for this topic.
Single sign-on (SSO) lets a user authenticate once with a central identity provider and then access multiple applications without signing in separately to each one. Applications commonly rely on federation protocols such as SAML or OIDC to accept an assertion or token from that provider. SSO centralizes authentication; it does not by itself make every connected application secure or eliminate the need for authorization.
The concentration of access makes the identity provider a high-value target: a stolen password, session, or authentication token may provide access to many services. Phishing-resistant MFA, risk-based access controls, secure token and session handling, and careful configuration of application trust reduce that exposure. Organizations should also monitor provider and federation logs, review which applications can rely on SSO, and promptly disable accounts and sessions when roles change or employment ends. Misconfigured claims or overly broad application permissions can otherwise grant more access than intended.
Weekly headline count for the current query.
To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single sign-on (SSO) authentication for all devices.
In 2025, employees are still using weak passwords. Instead of forcing an impossible change, security leaders are working around the problem.
Use SSO, don't use SSO. Have MFA, don't have MFA. An analysis of a snapshot of organizations using Push Security's platform finds that 99% of accounts susceptible to phishing attacks.
The max-severity bug affects versions using the SAML single sign-on mechanism.
Enterprises can now integrate 1Password with Duo, OneLogin, JumpCloud, Ping Identity, and more.
AD bridging extends the reach of your AD domain to non-Windows systems, providing centralized security, single sign-on, and compliance.
Increased federal cybersecurity regulations provide a pivot point for manufacturers to reconsider their access management strategy.
Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
SSO's one-to-many architecture is both a big advantage and a weakness.