all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Defend Against Azure Cross-Tenant Synchronization Attacks

Add to bookmarks
c
March 5, 2024, 12:11 a.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by CrowdStrike. Azure cross-tenant synchronization (CTS) was made generally available on May 30, 2023, and introduced a new attack surface on Microsoft Entra ID (formerly Azure Active Directory) where attackers can move laterally to a partner tenant or create a backdoor on an existing tenant.CrowdStrike showcases two observed attack paths to outline how adversaries can abuse CTSAs Microsoft Azure continues to gain market share in the cloud infrastructure space, it has gar...

active directory attack attackers attack paths attacks attack surface azure azure active directory backdoor can crowdstrike cts directory entra entra id may microsoft microsoft entra microsoft entra id partner synchronization

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
DevSecOps Tools 2 days, 18 hours ago | cloudsecurityalliance.org
code code management development devops +18
Cl
AI Hallucinations: The Emerging Market for Insuring Against Generative AI's Costly Blunders 4 days, 14 hours ago | cloudsecurityalliance.org
ai governance ai hallucinations blog chair +16
Cl
Why Business Risk Should be Your Guiding North Star for Remediation 4 days, 15 hours ago | cloudsecurityalliance.org
adoption agile attack attack surface +19
Cl
Upselling Cybersecurity: Why Baseline Security Features Shouldn’t Be a Commodity 4 days, 15 hours ago | cloudsecurityalliance.org
accountability advisory barr advisory consulting +23
Cl
Breach Debrief: The Fake Slackbot 1 week, 1 day ago | cloudsecurityalliance.org
abusing adaptive shield breach design +15
Cl
Understanding the Nuances: Privacy and Confidentiality 1 week, 1 day ago | cloudsecurityalliance.org
age american businesses clients +19
Cl
What’s in a Name? Defining Zero Trust for Leaders 1 week, 1 day ago | cloudsecurityalliance.org
analyst board business concept +17
Cl
Are You Ready for Microsoft Copilot? 1 week, 1 day ago | cloudsecurityalliance.org
ai chatbot chatbot copilot customers +13
Cl
Implementing a Data-Centric Approach to Security 1 week, 1 day ago | cloudsecurityalliance.org
access access governance can cto +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Cybersecurity - Governance, Risk and Compliance (GRC)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Information Security Risk Metrics Lead

@ Live Nation Entertainment | Work At Home-Connecticut
View on infosec-jobs.com

IT Product Owner - Enterprise DevSec Platform (d/f/m)

@ Airbus | Hamburg - Finkenwerder
View on infosec-jobs.com

Senior Information Security Specialist

@ Arthur Grand Technologies Inc | Arlington, VA, United States
View on infosec-jobs.com

Information Security Controls SME

@ Sword | Aberdeen, Scotland, United Kingdom
View on infosec-jobs.com
View more jobs