mercredi 21 juin 2023 à 13:47
When we do quarterly planning, my team categorizes our goals within four evergreen outcomes:
Reduce the risk of information security incidents
Increase trust in Vanta's information security program
Reduce the friction caused by information security controls
Use security expertise to support the business
In this article, I'm going to focus on number three: reducing friction.
Declaring your
mercredi 21 juin 2023 à 13:38
A security shortcoming in Microsoft Azure Active Directory (AD) Open Authorization (OAuth) process could have been exploited to achieve full account takeover, researchers said.
California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth.
"nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD