Microsoft acknowledged it was a service update targeting an internal validation test ring that caused a crash in Azure AD backend services. "A latent code defect in the Azure AD backend service ...

The technique is known as device code phishing. It exploits “device code flow,” a form of authentication formalized ... Microsoft Azure prompts users to confirm they're signing into the ...

Microsoft on Wednesday confirmed that it has addressed a so-called "BingBang" security issue that affected "small number of our internal applications" due to Azure Active Directory authorization ...

More specifically, the researchers had found an abandoned reply URL address in an Azure AD application related to the low-code Power Platform. Attackers could use the URL to redirect authorization ...

Yesterday, a "password spraying" PoC exploit was published for the Azure Active Directory brute-forcing flaw on GitHub. The PowerShell script, just a little over 100 lines of code, is heavily ...

An Azure Active Directory issue causing authentication problems is affecting a subset of Microsoft customers worldwide across many MIcrosoft services, including Office, Dynamics, Teams ...

To find the apps using the Azure AD Graph, developers should "search your code for the string 'graph.windows.net' and then use the Microsoft Graph migration guide," the announcement explained.

Azure Active Directory Authentication has been built in from the beginning, but Nielsen writes that it has been improved "using a server-side flow simplifying client authentication significantly." ...