all InfoSec news
SyncJacking: Hard Matching Vulnerability Enables Azure AD Account Takeover
Security Boulevard securityboulevard.com
This post describes an abuse of hard matching synchronization in Azure AD Connect that can lead to Azure AD account takeover. These findings build on the research that Semperis published in August, which described abuse of soft matching (also known as SMTP matching). This SyncJacking vulnerability means that an attacker with certain privileges can abuse ...
The post SyncJacking: Hard Matching Vulnerability Enables Azure AD Account Takeover appeared first on Semperis.
The post SyncJacking: Hard Matching Vulnerability Enables Azure …
account account takeover active directory azure azure ad hard takeover vulnerability