all InfoSec news
The Most Dangerous Entra Role You’ve (Probably) Never Heard Of
Feb. 16, 2024, 5:05 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Entra ID has a built-in role called “Partner Tier2 Support” that enables escalation to Global Admin, but this role is hidden from view in the Azure portal GUI.
Why it matters
- An adversary may target the “Partner Tier2 Support” role to maintain stealthy, privileged persistence in an Entra ID tenant
- Since the Azure portal GUI obscures this role, it can be challenging for Azure admins and security professionals to audit assignments for this role
Partner Tier2 What-Now?
“Partner Tier2 Support” …
admin adversary azure called entra entra id escalation global gui hidden may partner persistence portal privileged role support target
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Showcasing Artwork by Max for Autism Awareness Month
1 day, 10 hours ago |
malware.news
Kaiser Permanente notifies 13.4M patients of potential data exposure
1 day, 10 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Associate Compliance Advisor
@ SAP | Budapest, HU, 1031
DevSecOps Engineer
@ Qube Research & Technologies | London
Software Engineer, Security
@ Render | San Francisco, CA or Remote (USA & Canada)
Associate Consultant
@ Control Risks | Frankfurt, Hessen, Germany
Senior Security Engineer
@ Activision Blizzard | Work from Home - CA