topic Adversaries Can “Log In with Microsoft” through the nOAuth Azure Active Directory Vulnerability in Tech Talk https://community.isc2.org/t5/Tech-Talk/Adversaries-Can-Log-In-with-Microsoft-through-the-nOAuth-Azure/m-p/61021#M4013 <P>Hi All</P><P>&nbsp;</P><P>An interesting piece on the Microsoft nOAuth issues:</P><P>&nbsp;</P><P><SPAN>On June 20, 2023, Descope </SPAN><A href="https://www.descope.com/blog/post/noauth" target="_blank"><SPAN>published research </SPAN></A><SPAN>detailing how a combination of a flaw in Azure Active Directory and poorly integrated third-party applications — dubbed “nOAuth” — could lead to full account takeover. nOAuth is the latest in a large number of </SPAN><A href="https://www.cvedetails.com/top-50-vendors.php" target="_blank"><SPAN>vulnerabilities</SPAN></A><SPAN> and architectural weaknesses in Microsoft software and systems like Active Directory that can be exploited and put organizations at risk.&nbsp;</SPAN></P><P><SPAN>While Microsoft has </SPAN><A href="https://msrc.microsoft.com/blog/2023/06/potential-risk-of-privilege-escalation-in-azure-ad-applications/" target="_blank"><SPAN>responded</SPAN></A><SPAN> to the vulnerability, until developers make code changes in their applications, the proposed mitigation relies on organizations having strong identity protection capabilities to protect privileged accounts from misuse by rogue administrators.</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.crowdstrike.com/blog/noauth-microsoft-azure-ad-vulnerability/" target="_blank">https://www.crowdstrike.com/blog/noauth-microsoft-azure-ad-vulnerability/</A></SPAN></P><P>&nbsp;</P><P><SPAN>Regards</SPAN></P><P>&nbsp;</P><P><SPAN>Caute_Cautim</SPAN></P> Mon, 09 Oct 2023 10:39:01 GMT Caute_cautim 2023-10-09T10:39:01Z Adversaries Can “Log In with Microsoft” through the nOAuth Azure Active Directory Vulnerability https://community.isc2.org/t5/Tech-Talk/Adversaries-Can-Log-In-with-Microsoft-through-the-nOAuth-Azure/m-p/61021#M4013 <P>Hi All</P><P>&nbsp;</P><P>An interesting piece on the Microsoft nOAuth issues:</P><P>&nbsp;</P><P><SPAN>On June 20, 2023, Descope </SPAN><A href="https://www.descope.com/blog/post/noauth" target="_blank"><SPAN>published research </SPAN></A><SPAN>detailing how a combination of a flaw in Azure Active Directory and poorly integrated third-party applications — dubbed “nOAuth” — could lead to full account takeover. nOAuth is the latest in a large number of </SPAN><A href="https://www.cvedetails.com/top-50-vendors.php" target="_blank"><SPAN>vulnerabilities</SPAN></A><SPAN> and architectural weaknesses in Microsoft software and systems like Active Directory that can be exploited and put organizations at risk.&nbsp;</SPAN></P><P><SPAN>While Microsoft has </SPAN><A href="https://msrc.microsoft.com/blog/2023/06/potential-risk-of-privilege-escalation-in-azure-ad-applications/" target="_blank"><SPAN>responded</SPAN></A><SPAN> to the vulnerability, until developers make code changes in their applications, the proposed mitigation relies on organizations having strong identity protection capabilities to protect privileged accounts from misuse by rogue administrators.</SPAN></P><P>&nbsp;</P><P><SPAN><A href="https://www.crowdstrike.com/blog/noauth-microsoft-azure-ad-vulnerability/" target="_blank">https://www.crowdstrike.com/blog/noauth-microsoft-azure-ad-vulnerability/</A></SPAN></P><P>&nbsp;</P><P><SPAN>Regards</SPAN></P><P>&nbsp;</P><P><SPAN>Caute_Cautim</SPAN></P> Mon, 09 Oct 2023 10:39:01 GMT https://community.isc2.org/t5/Tech-Talk/Adversaries-Can-Log-In-with-Microsoft-through-the-nOAuth-Azure/m-p/61021#M4013 Caute_cautim 2023-10-09T10:39:01Z