Dark Reading

Rogue Azure AD Guests Can Steal Data via Power Apps

Guest accounts in Azure AD (AAD) are meant to provide limited access to corporate resources for external third parties — the idea is to enable collaboration without risking too much exposure. But ...
Dark Reading

Azure AD 'Log in With Microsoft' Authentication Bypass Affects Thousands

Organizations that have implemented the "Log in with Microsoft" feature in their Microsoft Azure Active Directory environments could potentially be vulnerable to an authentication bypass that opens ...
Redmond Magazine

Azure Active Directory Gets 'Converged' Management for Authentication Methods

Microsoft this week announced a few Azure Active Directory improvements. The improvements include a "Converged Authentication Methods" addition for centralizing the management of authentication ...
Redmond Magazine

Windows Admin Center in Azure Now Has Azure Active Directory Controls

Azure Active Directory authentication capabilities for IT pros using the Windows Admin Center in Azure management console are now commercially released at the "general availability" stage, per a ...
Bleeping Computer

Microsoft to start enforcing Azure multi-factor authentication in July

Starting in July, Microsoft will begin gradually enforcing multi-factor authentication (MFA) for all users signing into Azure to administer resources. After first completing the rollout for the Azure ...
Network World

How to configure a standby Azure AD Connect server

Here are some tips and tricks for creating redundant Azure AD Connect server that can help keep business running if the primary server fails. Organizations often use Azure AD Connect to maintain the ...
Infosecurity-magazine.com

Azure AD Credentials Exposed in Public App Settings File

A cybersecurity assessment has uncovered a serious vulnerability involving Azure Active Directory (Azure AD). Resecurity’s HUNTER Team discovered that application credentials, specifically the ...