Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: tenant Clear Filter

This Microsoft Entra ID Vulnerability Could Have Been Catastrophic

wired.com Matt Burgess 2025-09-24 06:09:17

As businesses around the world have shifted their digital infrastructure over the last decade from self-hosted servers to the cloud, they’ve benefitted from the standardized, built-in security features of major cloud providers like Microsoft. But with so much riding on these systems, there can be potentially disastrous consequences at a massive scale if something goes wrong. Case in point: Security researcher Dirk-jan Mollema recently stumbled upon a pair of vulnerabilities in Microsoft Azure’s

Topics: azure microsoft mollema security tenant
Read More
Shop Amazon

One Token to rule them all – Obtaining Global Admin in every Entra ID tenant

news.ycombinator.com Dirk-Jan Mollema 2025-09-25 01:03:21

While preparing for my Black Hat and DEF CON talks in July of this year, I found the most impactful Entra ID vulnerability that I will probably ever find. This vulnerability could have allowed me to compromise every Entra ID tenant in the world (except probably those in national cloud deployments). If you are an Entra ID admin reading this, yes that means complete access to your tenant. The vulnerability consisted of two components: undocumented impersonation tokens, called “Actor tokens”, that

Topics: actor id tenant token tokens
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3672 apple 3045 new 2421 google 2039 content 1738
Popular
like 1508 company 1433 pro 1341 iphone 1181 app 1134 zdnet 1119 said 1072 data 1055 does 912 reviews 897
Emerging
editorial 876 amazon 864 game 811 samsung 781 phone 768 pixel 762 android 743 just 725 users 689 available 687
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]