all InfoSec news
The Most Dangerous Entra Role You’ve (Probably) Never Heard Of
Feb. 16, 2024, 5:05 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Entra ID has a built-in role called “Partner Tier2 Support” that enables escalation to Global Admin, but this role is hidden from view in the Azure portal GUI.
Why it matters
- An adversary may target the “Partner Tier2 Support” role to maintain stealthy, privileged persistence in an Entra ID tenant
- Since the Azure portal GUI obscures this role, it can be challenging for Azure admins and security professionals to audit assignments for this role
Partner Tier2 What-Now?
“Partner Tier2 Support” …
admin adversary azure called entra entra id escalation global gui hidden may partner persistence portal privileged role support target
More from malware.news / Malware Analysis, News and Indicators - Latest topics
The real reason antivirus software detects cracks
1 day, 1 hour ago |
malware.news
Update: what-is-new.py Version 0.0.4
1 day, 5 hours ago |
malware.news
The CTI Analyst Challenge
1 day, 7 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States