{ads}

Experts Uncover How Cybercriminals Could Exploit Microsoft Entra ID for Elevated Privilege

Written By Monday 28 August 2023 Add Comment



August 28, 2023 at 09:35PM

Cybersecurity researchers have discovered a case of privilege escalation associated with a Microsoft Entra ID (formerly Azure Active Directory) application by taking advantage of an abandoned reply URL. "An attacker could leverage this abandoned URL to redirect authorization codes to themselves, exchanging the ill-gotten authorization codes for access tokens," Secureworks Counter Threat Unit (

from The Hacker News https://ift.tt/4GgBsCd

0 Response to "Experts Uncover How Cybercriminals Could Exploit Microsoft Entra ID for Elevated Privilege"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads