Azure AD. Attack of the Default Config. Cloud Security

blog-post

Abstract

There are several default configurations within the admin portal of Azure. The main affected area is Azure Active Directory (Azure AD) which is the primary area that controls user authentication, group memberships and privileges. The utilisation of these configurations can create several attack vectors that could be chained together to compromise the environment. The most significant issues concern app registrations that allow users to register and give permissions to third-party apps.

( https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021)

Links

• https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021

Citation

Masters, J., 2021. Azure AD. Attack of the Default Config. Cloud Security. URL https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/ (accessed 30 Aug 2021).