all InfoSec news
Directory.ReadWrite.All Is Not As Powerful As You Might Think
Feb. 12, 2024, 6:10 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Directory.ReadWrite.All is an MS Graph permission that is frequently cited as granting high amounts of privilege, even being equated to the Global Admin Entra ID role.
Why it matters
- Azure admins and security professionals may put undue focus on this permission at the expense of more impactful permissions
- Those more impactful permissions may go ignored, leaving potentially dangerous configurations in place
Yes, but…
- Directory.ReadWrite.All does grant some privileges, and those privileges can lead to dangerous attack paths depending on other …
admin azure directory entra entra id focus global graph high may permission permissions privilege professionals readwrite role security security professionals
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Update: what-is-new.py Version 0.0.4
23 hours ago |
malware.news
The CTI Analyst Challenge
1 day, 2 hours ago |
malware.news
2024-06-08: Three days of server scans and probes
1 day, 18 hours ago |
malware.news
Update: simple_listener.py Version 0.1.5
1 day, 23 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States