{"id":5615,"date":"2017-06-13T11:09:48","date_gmt":"2017-06-13T17:09:48","guid":{"rendered":"http:\/\/allidm.com\/blog\/?p=5615"},"modified":"2017-06-13T11:09:48","modified_gmt":"2017-06-13T17:09:48","slug":"risk-aware-iam-for-an-insecure-world","status":"publish","type":"post","link":"https:\/\/allidm.com\/blog\/risk-aware-iam-for-an-insecure-world\/","title":{"rendered":"Risk aware IAM for an insecure world"},"content":{"rendered":"<h2>Risk aware IAM for an insecure world<\/h2>\n<p>Yet another data breach has fallen upon us. This time at the popular cloud Identity-as-a-Service (IDaaS) provider, OneLogin, which spooked more than a few executives because, well, the cloud is more secure than on-prem right?<\/p>\n<p>What we know about the OneLogin data breach so far: OneLogin is used by more than 2000 enterprise customers worldwide. AWS API keys were compromised (stolen) by the attacker(s) surely resulting in unprecedented access to sensitive data. According to OneLogin, the attacker \u201cgained access to database tables containing information about users, apps, and various types of keys.\u201d It may be assumed that, with the API keys being compromised, sensitive customer data and account credentials were also compromised.<\/p>\n<p>Read more at &#8211; Risk aware IAM for an insecure world<\/p>\n<p><a href=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png\"><img data-recalc-dims=\"1\" decoding=\"async\" data-attachment-id=\"4613\" data-permalink=\"https:\/\/allidm.com\/blog\/logmote-has-launched-its-unified-authentication-single-sign-on-sso-solution-into-the-global-security-market\/allidm-identityaccessmanagement\/#main\" data-orig-file=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?fit=10%2C10&amp;ssl=1\" data-orig-size=\"10,10\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"Allidm Identity Access Management Post Image\" data-image-description=\"&lt;p&gt;Identity and Access Management Post Image&lt;\/p&gt;\n\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?fit=10%2C10&amp;ssl=1\" loading=\"lazy\" src=\"https:\/\/i0.wp.com\/allidm.com\/blog\/wp-content\/uploads\/2015\/11\/Allidm-IdentityAccessManagement.png?resize=10%2C10\" alt=\"Allidm Identity Access Management Post Image\" width=\"10\" height=\"10\" class=\"alignnone size-full wp-image-4613\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Risk aware IAM for an insecure world Yet another data breach has fallen upon us. This time at the popular cloud Identity-as-a-Service (IDaaS) provider, OneLogin, which spooked more than a few executives because, well, the cloud is more secure than on-prem right? What we know about the OneLogin data breach so far: OneLogin is used [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[210,88,6],"tags":[1731,1619],"class_list":["post-5615","post","type-post","status-publish","format-standard","hentry","category-cloud-2","category-identity-space","category-news","tag-iam-one-login","tag-iam-risk"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p25vfy-1sz","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5615","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/comments?post=5615"}],"version-history":[{"count":1,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5615\/revisions"}],"predecessor-version":[{"id":5616,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/posts\/5615\/revisions\/5616"}],"wp:attachment":[{"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/media?parent=5615"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/categories?post=5615"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/allidm.com\/blog\/wp-json\/wp\/v2\/tags?post=5615"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}