all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Device Code Phishing – Add Your Own Sign-In Methods on Entra ID

Add to bookmarks
Jan. 30, 2024, 8:31 a.m. | Felix Aeppli

Compass Security Blog blog.compass-security.com

TL;DR An attacker is able to register new security keys (FIDO) or other authentication methods (TOTP, Email, Phone etc.) after a successful device code phishing attack. This allows an attacker to backdoor the account (FIDO) or perform the self-service password reset for the account with the newly registered sign-in methods. Microsoft deemed this not a vulnerability.

account attack attacker authentication authentication methods backdoor code device email entra entra id etc fido keys microsoft microsoft azure own password password reset phishing phishing attack phone red teaming register research reset security security keys service sign tools totp vulnerability

Visit resource

More from blog.compass-security.com / Compass Security Blog

New Burp Extension: JWT-scanner 4 days, 16 hours ago | blog.compass-security.com
application applications article authentication +20
Behind The Scenes Of Ransomware Attacks 2 weeks, 4 days ago | blog.compass-security.com
apt attacks big blog +10
Pwn2Own Toronto 2023: Part 5 – The Exploit 4 weeks, 1 day ago | blog.compass-security.com
buffer buffer overflow buffer overflow vulnerability camera +20
Pwn2Own Toronto 2023: Part 4 – Memory Corruption Analysis 4 weeks, 2 days ago | blog.compass-security.com
analysis corruption internet of things manage +9
Pwn2Own Toronto 2023: Part 3 – Exploration 1 month ago | blog.compass-security.com
authentication can code code execution +19
Pwn2Own Toronto 2023: Part 2 – Exploring the Attack Surface 1 month ago | blog.compass-security.com
aim attack attack surface blog +16
Pwn2Own Toronto 2023: Part 1 – How it all started 1 month ago | blog.compass-security.com
analysts blog blog post camera +13
Manipulating LLMs – How to confuse ChatGPT 1 month, 2 weeks ago | blog.compass-security.com
ai algorithm chatgpt data +13
Luring the Threat: Lessons from ICS Honeypots in Ukraine and Germany 2 months ago | blog.compass-security.com
apt attacks components control +29

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Salesforce Solution Consultant

@ BeyondTrust | Remote United States
View on infosec-jobs.com

Divisional Deputy City Solicitor, Public Safety Compliance Counsel - Compliance and Legislation Unit

@ City of Philadelphia | Philadelphia, PA, United States
View on infosec-jobs.com

Security Engineer, IT IAM, EIS

@ Micron Technology | Hyderabad - Skyview, India
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

Werkstudent Cybersecurity (m/w/d)

@ Brose Group | Bamberg, DE, 96052
View on infosec-jobs.com
View more jobs