News

CallTower, Inc.: CallTower Launches Entra Sync: Streamlining Microsoft Teams Provisioning and Management
New "Mission Control" System Empowers IT Teams to Automate and Simplify User Lifecycle Management for TeamsSALT LAKE CITY, UT, ROCHESTER, NY, MONTREAL, LONDON, June 25, 2025experience for IT administr ...
The Victoria Advocate15d
Semperis Research Uncovers Ongoing Risk from nOAuth Vulnerability in Microsoft Entra ID, Affecting Enterprise SaaS Applications - Victoria Advocate
Discovered through cross-tenant testing, nOAuth exploits Entra ID app configurations that permit unverified email claims as user identifiers, a known anti-pattern per OpenID Connect standards.
SecurityWeek27d
TeamFiltration Abused in Entra ID Account Takeover Campaign
The investigation also uncovered a link between the attacks and a list of application IDs pre-configured in TeamFiltration. These are Microsoft OAuth apps that can receive special “family refresh ...
Bleeping Computer28d
Password-spraying attacks target 80,000 Microsoft Entra ID accounts - BleepingComputer
Hackers have been using the TeamFiltration pentesting framework to target more than 80,000 Microsoft Entra ID accounts at hundreds of organizations worldwide.
The Hacker News28d
Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source ...
Cybersecurity researchers have uncovered a new account takeover (ATO) campaign that leverages an open-source penetration testing framework called TeamFiltration to breach Microsoft Entra ID (formerly ...