TechBooky

Critical Vulnerability In Microsoft Authenticator Exposes Users To Token Theft

An important and serious security flaw in Microsoft's Authenticator has now been discovered to allow hackers to steal sign-in ...
Computer Weekly

38TB Microsoft data leak highlights risks of oversharing

Microsoft has learned an important lesson after having to clean up a major data leak resulting from an “overly permissive” shared access signature (SAS) token accidentally disclosed by one of its ...
Redmond Magazine

Microsoft Addresses Misconfigured Token Exposing 38TB of Microsoft Data

Microsoft indicated on Monday that it had revoked an overly permissioned Shared Access Signature (SAS) token, said to have exposed "38TB" of internal Microsoft data. The action comes after ...

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...
techtimes

Web Account Manager: The Foundational Enabler of Single Sign-On for Windows Applications within the Microsoft Identity Ecosystem

In today's rapidly evolving identity landscape, organizations are accelerating their adoption of cloud-first strategies (specifically by modernizing identity infrastructure through the adoption of ...
Bleeping Computer

Microsoft shares more details on Windows 11 admin protection

Microsoft has shared more details about the new Windows 11 administrator protection security feature, which is available in preview and uses Windows Hello authentication prompts to block access to ...

Microsoft Authenticator: Critical vulnerability allows token theft

Microsoft warns of a security vulnerability in Authenticator. Attackers can intercept sign-in tokens and gain access.