all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft Azure AD flaw can lead to account takeover

Add to bookmarks
June 23, 2023, 10:30 p.m. |

Malwarebytes Labs blog.malwarebytes.com

Categories: Exploits and vulnerabilities

Categories: News

Tags: OAuth


Tags: nOAuth


Tags: IdP


Tags: Azure


Tags: Microsoft


Tags: login with


Researchers have found a flaw in Microsoft Azure AD which they claim can be used to take over accounts that rely on pre-established trust.



(Read more...)



The post Microsoft Azure AD flaw can lead to account takeover appeared first on Malwarebytes Labs.

account accounts account takeover azure azure ad claim exploits exploits and vulnerabilities flaw idp login login with microsoft microsoft azure microsoft azure ad noauth oauth researchers takeover trust

Visit resource

More from blog.malwarebytes.com / Malwarebytes Labs

Notorious data leak site BreachForums seized by law enforcement 9 hours ago | blog.malwarebytes.com
breach breachforums data data breach +10
Apple and Google join forces to stop unwanted tracking 17 hours ago | blog.malwarebytes.com
apple bluetooth devices forward +4
Update Chrome now! Google releases emergency security patch 1 day, 16 hours ago | blog.malwarebytes.com
chrome emergency exploits and vulnerabilities google +10
Why car location tracking needs an overhaul 2 days, 18 hours ago | blog.malwarebytes.com
abuse car car location tracking car tracking +12
A week in security (May 6 – May 12) 2 days, 22 hours ago | blog.malwarebytes.com
a week in security dell docgo fakebat +9
Dell notifies customers about data breach 5 days, 15 hours ago | blog.malwarebytes.com
breach customers data data breach +3
DocGo patient health data stolen in cyberattack 6 days, 18 hours ago | blog.malwarebytes.com
access attacker care cyberattack +12
Desperate Taylor Swift fans defrauded by ticket scams 1 week ago | blog.malwarebytes.com
facebook hunting scammers scams +8
Tracing what went wrong in 2012 for today’s teens, with Dr. Jean Twenge: Lock and … 1 week, 2 days ago | blog.malwarebytes.com
code crisis health jean twenge +18

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Penetration Tester, Retail Engineering, Early Career

@ Apple | Austin, Texas, United States
View on infosec-jobs.com

Principal Product Security Engineer

@ Palo Alto Networks | Bengaluru, India
View on infosec-jobs.com

Senior Manager/ Director, Cyber

@ McGrathNicol | Brisbane
View on infosec-jobs.com