News

This Microsoft Entra ID Vulnerability Could Have Caused a Digital Catastrophe

A pair of flaws in Microsoft's Entra ID identity and access management system could have allowed an attacker to gain access ...
ZDNet

Cloud computing: Microsoft fixes Azure flaw that could have allowed access to other accounts

Microsoft has fixed a bug in the Azure Automation service that could have allowed one account owner to access another customer's accounts using the same service. Azure Automation lets customers ...
Redmond Magazine

Microsoft Bringing Inactive Account Removals and Default Security to Azure Active Directory Users

Microsoft announced a couple of Azure Active Directory security enhancements this week. Microsoft is previewing the ability to allow IT pros to remove inactive user accounts for organizations that use ...
SiliconANGLE

Proofpoint uncovers account takeover campaign targeting Azure users

Proofpoint Inc. researchers have uncovered a hacking campaign that seeks to compromise Azure accounts in a bid to steal data and carry out financial fraud. The email security provider detailed the ...
Threat Post

Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks

An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate its attacks. Microsoft has suspended 18 Azure Active ...
ZDNet

Microsoft takes a step toward merging Microsoft Account and Azure AD cloud identity services

Microsoft has taken a first step toward its long-term goal of merging its Microsoft Account and Azure Active Directory cloud identity services. On August 12, Microsoft made available a public preview ...

AWS, Azure and Google Cloud credentials from old accounts are putting businesses at risk

Report warns long-lived credentials remain a significant security risk Outdated access keys increase vulnerability across ...