The vulnerability of the Ivanti Workspace Control management console, related to bypassing authentication through spoofing, allows a perpetrator to elevate their privileges.

The vulnerability of Ivanti Workspace Control’s software for controlling user access to applications and data involves bypassing authentication through phising techniques. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Ivanti Workspace Control’s software for controlling user access to applications and data lies in its use of an unreliable search path, which allows a malicious individual to escalate their privileges.

The vulnerability of the software for controlling user access to applications and data in Ivanti Workspace Control is related to the use of an unreliable search path. Exploiting this vulnerability can allow a intruder to increase their privileges...

Microsoft Incident Response lessons on preventing cloud identity compromise

Microsoft observed a surge in cyberattacks targeting identities in 2023, with attempted password-based attacks increasing by more than tenfold in the first quarter of 2023 compared to the same period in 2022. Threat actors leverage compromised identities to achieve a significant level of access t...

OpenEMR Access Control Error Vulnerability (CNVD-2023-40910)

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An Access Control Error vulnerability exists in OpenEMR versions prior to 7.0.1,...

Climbing the Ladder: Zero Trust, Single Sign-On, Multiple Applications

It is understood that there is a significant amount of complexity to securing today's enterprise, especially as more services and applications move to the cloud and a Zero Trust security model is employed. We at Akamai are actively engaged in helping enterprises adjust to a Zero Trust security...