Identify and Mitigate SaaS Session Hijacking

preview_player
Показать описание
Prevent attackers from capturing session tokens and establishing persistence within your SaaS environment. The prevalence of MFA and SSO has caused attackers to forgo targeting credentials in favor of capturing session tokens. In this lightboard video, Obsidian CPO and co-founder Glenn Chisholm demonstrates some of the methods bad actors are employing to steal tokens, hijack sessions, and establish persistence within SaaS identity providers and business-critical applications.
  1. Obsidian Security
  2. Obsidian Security
  3. Session Hijacking
  4. SaaS Security
  5. steal tokens
Рекомендации по теме
Identify and Mitigate 0:03:53

Identify and Mitigate SaaS Session Hijacking

Prevent OAuth Abuse 0:04:37

Prevent OAuth Abuse in the SaaS Environment

SaaS Security API 0:25:26

SaaS Security API Getting started & Best practices

SaaS Security Management: 0:26:49

SaaS Security Management: Mitigating Digital Transformation Risk

2021-09-15 CERIAS - 0:52:01

2021-09-15 CERIAS - Securing SaaS, a Practitioner's Guide

Risk Mitigation in 0:31:48

Risk Mitigation in SaaS Solutions

The best strategy 0:00:59

The best strategy to reduce customer churn for SaaS with Scott Hurff @Churnkey

2024.06 - 'Full 0:56:08

2024.06 - 'Full of SaaS and TOTALLY SECURE' w/ Garrett Gross

Data-Driven Growth for 0:39:14

Data-Driven Growth for SaaS Leaders | Session 2: Bang the Drum

08.02.2022 - SaaS 0:36:39

08.02.2022 - SaaS Solved - Session 3

Session #4 - 0:35:15

Session #4 - 7 Steps to Choosing the Right SaaS Tool

What is Platform 0:05:05

What is Platform Risk for SaaS Products? How can you Mitigate Platform Risk? ft Shashank, PushOwl

Accelerate and De-Risk 0:41:27

Accelerate and De-Risk Your Journey to SaaS | OD140

Protecting SaaS Applications: 4:13:23

Protecting SaaS Applications: Security & Data Protection Considerations MegaCast

My Jobs Before 0:00:15

My Jobs Before I was a Project Manager

The Realities of 0:20:37

The Realities of SaaS Compromise

Workshop: How to 1:04:52

Workshop: How to reduce churn with a SaaS cancellation flow

Accelerate your SaaS 1:18:49

Accelerate your SaaS App development using the power of the Business Application Platform

Zero to Launch 1:13:47

Zero to Launch with Lovable: Session #1

Darren Gallop: How 0:47:25

Darren Gallop: How to Reduce & Manage your SaaS Data Security Risk & Privacy Compliance

IBM Security Verify 0:17:48

IBM Security Verify SaaS: Proactive detection and remediation of large scale identity attacks

Redington & CheckPoint 0:43:25

Redington & CheckPoint Webinar Session CloudGuard SaaS for SaaS Security 2nd April 2020

Sparx EA SaaS 0:43:40

Sparx EA SaaS

Security Architecture Best 0:58:45

Security Architecture Best Practices for SaaS Applications

Комментарии
Автор

I can tell you're holding back, it's obvious you've got a firm grip on the category and the topic.
My only complaint is that the title of this video is "how to identify and mitigate" which you did not cover at all, this video explained what a season was and their relation to tokens, and basic examples of how an attacker might steal one
Can you make a follow up video for a more advanced audience with information on how to identify sessions that have compromised tokens, and detect when the token gets injected into a different browser that's granted access? 3:43

tomb