A critical authentication flaw in StrongDM’s desktop application has been identified that allows attackers to hijack user sessions by reusing locally stored authentication material, potentially exposing sensitive enterprise infrastructure. The issue, tracked as CVE-2026-4387, was discovered by SpecterOps during a security assessment and has been fixed in StrongDM Desktop version 23.74.0 and CLI version 53.77.0. […]
The post Critical StrongDM Vulnerability Allows Attackers to Steal and Reuse Authentication appeared first on Cyber Security News.