NetEye Blog

Rethinking Authentication and Authorization in a Multi-Component Platform with OIDC

Each of these tools brings value and, inevitably, its own idea of authentication and authorization. At some point, “it works” ...
SDxCentral

Thousands of Fortinet firewalls face critical authentication flaw

Security researchers claimed more than 10,000 Fortinet firewalls are at risk from a legacy vulnerability affecting FortiGate SSL VPN. The vulnerability allows users to log in without being prompted ...
Bleeping Computer

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows them to bypass two-factor authentication (2FA) when targeting vulnerable ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet on Wednesday said it observed "recent abuse" of a five-year-old security flaw in FortiOS SSL VPN in the wild under certain configurations. The vulnerability in question is CVE-2020-12812 ...
IEEE

Enhancing Two-Factor Authentication through MAC Address Verification: A Python-based Security Approach

This paper describes a security boost to two-factor authentication (2FA) systems via Media Access Control (MAC) address verification. Even as 2FA is established as a security baseline, weaknesses ...
Cyber Defense Magazine

Customer Authentication Challenges That Impact Your Organization’s Security Posture

CISOs play a pivotal role in shaping their organization’s CIAM strategy. Although they might not make the final purchase decisions, their influence is crucial throughout the selection and ...
GitHub

Support for nested groups in LDAP authentication(Microsoft Active Directory).

Currently, Airflow’s LDAP authentication via FAB Security Manager only supports direct group membership. In many enterprise setups, especially with Microsoft Active ...