Azure AD - Geek Feed

Microsoft Entra ID flaw allowed hijacking any company’s tenant

September 24, 2025September 24, 2025 geekfeed0Tagged Actor Token, API, Azure Active Directory, Azure AD, CVE-2025-55241, Global Admin, Microsoft Entra ID, Microsoft Graph

A critical combination of legacy components could have allowed complete access to the Microsoft Entra ID tenant of every company in the world. The fatal mix included undocumented tokens called “actor tokens” and a vulnerability in the Azure AD Graph API (CVE-2025-55241) that allowed the tokens to work with any organization’s Entra ID environment. A […]

6 mins read

Tech News

Microsoft fixes Entra ID authentication issue caused by DNS change

February 27, 2025February 27, 2025 geekfeed0Tagged Authentication, Azure, Azure Active Directory, Azure AD, DNS, Microsoft Entra ID, Outage

Microsoft has fixed an issue that caused Entra ID DNS authentication failures when using the company’s Seamless SSO and Microsoft Entra Connect Sync. In an update to its Azure status page, Microsoft says these problems were caused by a recent DNS change that triggered DNS resolution failures for the autologon.microsoftazuread.sso.com domain when customers tried to […]

2 mins read

Microsoft: Hackers steal emails in device code phishing attacks

February 17, 2025February 17, 2025 geekfeed0Tagged Authentication, Azure AD, microsoft, Microsoft 365, Microsoft Entra ID, phishing, russia, Spear Phishing

An active campaign from a threat actor potentially linked to Russia is targeting Microsoft 365 accounts of individuals at organizations of interest using device code phishing. The targets are in the government, NGO, IT services and technology, defense, telecommunications, health, and energy/oil and gas sectors in Europe, North America, Africa, and the Middle East. Microsoft Threat Intelligence Center tracks the threat […]

3 mins read