Hacker News new | past | comments | ask | show | jobs | submit login

Sounds like the vulnerability was one within AD FS and that exposed the private key, making golden SAML possible.



It was the SolarWinds hack that gave internal access and potential admin rights. It's no different than if a domain controller gets compromised. The attacker has gained control of the keys to kingdom; it's an inherent risk to SSO.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: