Fortinet blocks exploited FortiCloud SSO zero day until patch is ready

Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability ...

Mandiant details how ShinyHunters abuse SSO to steal cloud data

Mandiant says a wave of recent ShinyHunters SaaS data-theft attacks is being fueled by targeted voice phishing (vishing) attacks and company-branded phishing sites that steal single sign-on (SSO) ...
SecurityWeek

ShinyHunters-Branded Extortion Activity Expands, Escalates

Mandiant has observed an increase in ShinyHunters-branded attacks using evolved vishing and credential harvesting.
Security Boulevard

SSO vs. Federated Identity Management: A Guide

Managing digital identities for both human and non-human users is a central challenge for modern organizations. As companies adopt more SaaS platforms, microservices, and multi-cloud environments, ...
CSO Online

Critical FortiCloud SSO zero‑day forces emergency service disablement at Fortinet

CISA added the flaw to its KEVs catalog as Fortinet warned that patches for most affected versions remain “upcoming,” even though vulnerable devices can no longer use cloud SSO until upgraded.
CoinTelegraph

GAIMIN unifies gaming, cloud, and esports with a Single Sign-On (SSO) feature

With what is admittedly a brilliant piece of technology, GAIMIN, the pioneering Web3 gaming, cloud computing ecosystem as well as the owners of esports giants, Gaimin Gladiators (GG), has announced a ...