Abandoned reply URL in Azure AD app could let attackers gain privileges to launch attacks

25 August 2023

An Azure Active Directory (AD) app with an abandoned reply URL address was recently observed, a situation that could let an attacker leverage the abandoned URL to redirect authorization codes to themselves, exchanging the fraudulently obtained authorization codes for access tokens. In a blog post Aug.

Source: SC Magazine

Date:

25 August 2023

Categorie(s):

NEWS

Tag(s):

Abandoned, Azure AD, IT, News, URL

Cyberthreats linked to foreign actors aim to hinder Election Day proceedings5 November 2024
DocuSign’s API used to lure victims into e-signing fake invoices5 November 2024
Schneider Electric ransomware crew demands $125k paid in baguettes5 November 2024
How to Become a Chief Information Officer: CIO Cheat Sheet5 November 2024
Research: Extending corporate life of laptops by just one year can reduce harmful emissions by 25%5 November 2024