Experts Uncover How Cybercriminals Could Exploit Microsoft Entra ID for Elevated Privilege
Monday 28 August 2023
Add Comment
Cybersecurity researchers have discovered a case of privilege escalation associated with a Microsoft Entra ID (formerly Azure Active Directory) application by taking advantage of an abandoned reply URL. "An attacker could leverage this abandoned URL to redirect authorization codes to themselves, exchanging the ill-gotten authorization codes for access tokens," Secureworks Counter Threat Unit (
from The Hacker News https://ift.tt/4GgBsCd
Genrerating Link.... 15 seconds.
Your Link is Ready.
0 Response to "Experts Uncover How Cybercriminals Could Exploit Microsoft Entra ID for Elevated Privilege"
Post a Comment