all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Device Code Phishing – Add Your Own Sign-In Methods on Entra ID

Add to bookmarks
Jan. 30, 2024, 8:31 a.m. | Felix Aeppli

Compass Security Blog blog.compass-security.com

TL;DR An attacker is able to register new security keys (FIDO) or other authentication methods (TOTP, Email, Phone etc.) after a successful device code phishing attack. This allows an attacker to backdoor the account (FIDO) or perform the self-service password reset for the account with the newly registered sign-in methods. Microsoft deemed this not a vulnerability.

account attack attacker authentication authentication methods backdoor code device email entra entra id etc fido keys microsoft microsoft azure own password password reset phishing phishing attack phone red teaming register research reset security security keys service sign tools totp vulnerability

Visit resource

More from blog.compass-security.com / Compass Security Blog

How to become a Hacker 1 week, 4 days ago | blog.compass-security.com
compass computer computer science eth +13
Bug Bounty: Insights from Our First-hand Experience 3 weeks, 4 days ago | blog.compass-security.com
blog blog posts bounties bounty +26
New Burp Extension: JWT-scanner 1 month, 1 week ago | blog.compass-security.com
application applications article authentication +20
Behind The Scenes Of Ransomware Attacks 1 month, 3 weeks ago | blog.compass-security.com
apt attacks big blog +10
Pwn2Own Toronto 2023: Part 5 – The Exploit 2 months ago | blog.compass-security.com
buffer buffer overflow buffer overflow vulnerability camera +20
Pwn2Own Toronto 2023: Part 4 – Memory Corruption Analysis 2 months ago | blog.compass-security.com
analysis corruption internet of things manage +9
Pwn2Own Toronto 2023: Part 3 – Exploration 2 months ago | blog.compass-security.com
authentication can code code execution +19
Pwn2Own Toronto 2023: Part 2 – Exploring the Attack Surface 2 months ago | blog.compass-security.com
aim attack attack surface blog +16
Pwn2Own Toronto 2023: Part 1 – How it all started 2 months, 1 week ago | blog.compass-security.com
analysts blog blog post camera +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com