Dark Reading

Critical Azure Entra ID Flaw Highlights Microsoft IAM Issues

A critical Microsoft authentication vulnerability could have allowed a threat actor to compromise virtually every Entra ID tenant in the world. The elevation of privilege (EoP) vulnerability, tracked ...
Bleeping Computer

Microsoft Entra ID flaw allowed hijacking any company's tenant

A critical combination of legacy components could have allowed complete access to the Microsoft Entra ID tenant of every company in the world. The fatal mix included undocumented tokens called “actor ...
Redmond Magazine

Microsoft Entra API-Driven Provisioning Preview Eases HR App Integrations

Microsoft on Wednesday announced a preview of "Microsoft Entra API-driven provisioning," which promises to ease HR data sharing with Microsoft's identity and access management solutions. Specifically, ...
Redmond Magazine

Microsoft Entra PowerShell Module Hits Public Preview

Microsoft has taken the wraps off a new PowerShell module to help administrators programmatically manage and automate Entra ID via the command line. The Microsoft Entra PowerShell module became ...
Wired

This Microsoft Entra ID Vulnerability Could Have Been Catastrophic

As businesses around the world have shifted their digital infrastructure over the last decade from self-hosted servers to the cloud, they’ve benefitted from the standardized, built-in security ...
IT News For Australia Business

Actor auth tokens gave Global Admin access across Azure Entra ID tenants

A Dutch security researcher has published an indepth analysis of a critical vulnerability that could have allowed attackers to compromise every Microsoft Entra ID tenant worldwide through a ...