Book a Demo

Resource Center

Learn more about Cyngular
View Datasheet
Book a Demo
Tags filter // All

Blog Articles

image (38)

ConsentFix: Abusing Azure OAuth Consent to Take Over Microsoft Accounts

ConsentFix is a browser-native phishing technique that compromises Microsoft accounts by abusing legitimate Mi
Microsoft Azure
event

The One-Line Backdoor: How a Single EventBridge Rule Becomes an Attacker’s Control Channel

Your security dashboard is clean. No suspicious EC2 instances. No rogue Lambda functions. No unauthorized S3 a
Amazon AWS
gcp sa

Lateral Movement via External GCP Service Accounts

In Google Cloud Platform (GCP), Service Accounts (SAs) are designed as non-human identities for workloads like
Google Cloud Services
FederatedUser

Shadow Access in AWS - Federation Attacks with Temporary STS Tokens

Throughout 2025, incident-response teams across finance, healthcare, and tech uncovered a growing pattern
Amazon AWS
saas

Forgotten Keys, Open Clouds: The Danger of Credentials Lost in SaaS

In cloud-native organizations, identity is the new perimeter. The credentials that represent those identities,
Amazon AWS Microsoft Azure
refresh_token

The Ghost Session Problem: The Real Persistence Threat in Azure AD

Password resets, MFA prompts, and user deactivation can feel like a full stop, but in Azure AD the real gap
Microsoft Azure
Request demo
ThirdHub
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.