all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Microsoft Azure AD CTS feature can be abused for lateral movement

Add to bookmarks
Aug. 3, 2023, 10:55 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Microsoft's new Azure Active Directory Cross-Tenant Synchronization (CTS) feature, introduced in June 2023, has created a new potential attack surface that might allow threat actors to more easily spread laterally to other Azure tenants. [...]

active directory attack attack surface azure azure active directory azure ad cloud directory feature june june 2023 lateral movement microsoft microsoft azure microsoft azure ad security synchronization threat threat actors

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Japanese police create fake support scam payment cards to warn victims 14 hours ago | www.bleepingcomputer.com
convenience elderly fake fraud +14
Okta warns of "unprecedented" credential stuffing attacks on customers 16 hours ago | www.bleepingcomputer.com
access access management accounts attacks +15
Telegram is down with "Connecting" error 1 day, 15 hours ago | www.bleepingcomputer.com
apps down error mobile +5
Fake job interviews target developers with new Python backdoor 1 day, 17 hours ago | www.bleepingcomputer.com
access backdoor campaign dev +18
Kaiser Permanente: Data breach may impact 13.4 million patients 1 day, 22 hours ago | www.bleepingcomputer.com
breach data data breach data security +15
FBI warns against using unlicensed crypto transfer services 2 days, 10 hours ago | www.bleepingcomputer.com
can crypto cryptocurrency down +13
LA County Health Services: Patients' data exposed in phishing attack 2 days, 11 hours ago | www.bleepingcomputer.com
attack breach data data breach +14
LA County Health Services: Patients' data exposed in phishing attack 2 days, 11 hours ago | www.bleepingcomputer.com
attack breach care data +21
Researchers sinkhole PlugX malware server with 2.5 million unique IPs 2 days, 12 hours ago | www.bleepingcomputer.com
addresses command command and control connections +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Associate Compliance Advisor

@ SAP | Budapest, HU, 1031
View on infosec-jobs.com

DevSecOps Engineer

@ Qube Research & Technologies | London
View on infosec-jobs.com

Software Engineer, Security

@ Render | San Francisco, CA or Remote (USA & Canada)
View on infosec-jobs.com

Associate Consultant

@ Control Risks | Frankfurt, Hessen, Germany
View on infosec-jobs.com

Senior Security Engineer

@ Activision Blizzard | Work from Home - CA
View on infosec-jobs.com
View more jobs