Unfixed Microsoft Entra ID Authentication Bypass Threatens Hybrid Clouds
August 15, 2024 at 05:10PM Researchers have discovered a vulnerability in Microsoft Entra ID that can enable attackers to bypass authentication in hybrid identity infrastructures. This involves manipulating the Pass-Through Authentication (PTA) agent, allowing them to log in as any synced AD user without knowing their actual password. Microsoft plans to address the issue, which … Read more