SecurityWeek

All Microsoft Entra Tenants Were Exposed to Silent Compromise via Invisible Actor Tokens: Researcher

Microsoft patches CVE-2025-55241, an Azure Entra elevation of privilege vulnerability that could have been exploited to ...

Microsoft’s Entra ID vulnerabilities could have been catastrophic

Known as Entra ID, the system stores each Azure cloud customer’s user identities, sign-in access controls, applications, and ...
Techzine Europe

Dutch hacker: all Microsoft Entra ID tenants at risk

Dutch security researcher Dirk-jan Mollema discovered a critical vulnerability in Microsoft Entra ID that allowed full access ...
The Hacker News

Microsoft Patches Critical Entra ID Flaw Enabling Global Admin Impersonation Across Tenants

July 17, 2025; CVSS 10.0 Entra ID bug via legacy Graph enabled cross-tenant impersonation risking tenant compromise.

Microsoft patches critical Entra ID flaws that endangered millions of tenants

Microsoft recently patched a critical security vulnerability in its Entra ID system. The flaw, tracked as CVE-2025-55241, could have been exploited to take control of any ...
Bleeping Computer

Microsoft Entra ID flaw allowed hijacking any company's tenant

A critical combination of legacy components could have allowed complete access to the Microsoft Entra ID tenant of every company in the world. The fatal mix included undocumented tokens called “actor ...
Mena FN

Optimal Idm Launches Universal MFA Integration For Microsoft Azure Tenants

Optimal IdM is a global provider of innovative and affordable identity access management solutions. Revolutionary solution brings enterprise-grade MFA to any Azure organization, with seamless ...
Gehost op MSN

The intruder is in the house: Storm-0501 attacked Azure, stole data, demanded payment via Teams

Storm-0501, a financially motivated cybercrime crew, recently broke into a large enterprise's on-premises and cloud environments, ultimately exfiltrating and destroying data within the org's Azure ...