Louis Mastelinck previews common Entra ID pitfalls around authentication, Conditional Access, privilege and app consent.
The attack abused misconfigured conditional access policies to bypass multi-factor authentication protections.
Hackers launched 81 million login attempts against Microsoft 365, exploiting Azure CLI and MFA configuration gaps to ...
Attackers used Azure CLI and ROPC to expose Microsoft 365 MFA gaps, showing why admins need tighter Conditional Access and ...
Attackers behind a password-spraying campaign targeting Microsoft Office 365 accounts have amassed dozens of victims by abusing a deprecated feature in OAuth 2.0 to ...
What happened A massive password spray campaign is targeting Microsoft 365 environments through Azure CLI authentication. Huntress warned that threat actors made more than 81 million login attempts ...
Microsoft will soon start rolling out Conditional Access policies requiring multifactor authentication (MFA) from administrators when signing into Microsoft admin portals such as Microsoft Entra, ...
Learn how Conditional Access policies can go beyond basic MFA to enforce phishing-resistant authentication, device compliance, session controls and risk-based access. Work through guided hands-on ...
At today's online summit hosted by RedmondMag, titled "Cloud Control: Securing Access and Identity in the Microsoft SaaS Stack," longtime Microsoft MVP and Principal Cloud Architect Joey D'Antoni ...