Redmond Magazine

Microsoft Outlines Azure AD Best Practices and Rolls Out Conditional Access and Sync Improvements

Microsoft recently announced some Azure Active Directory improvements, including conditional access policy management enhancements and synchronization service additions. In addition, Microsoft offered ...
Bleeping Computer

Azure AD Password Protection Available, Lowers Spray Attack Risks

The Azure Active Directory (AD) Password Protection feature which blocks commonly used and compromised passwords to dramatically reduce the risks raised by password spray attacks is now generally ...
Ars Technica

New Azure Active Directory password brute-forcing flaw has no fix

Imagine having unlimited attempts to guess someone’s username and password without getting caught. That would make an ideal scenario for a stealthy threat actor—leaving server admins with little to no ...
CSOonline

Think security first when switching from traditional Active Directory to Azure AD

With the final release of Windows 10, the use of traditional Active Directory may be waning, and Azure AD on the rise. Here are some security concerns that need to be addressed when making the switch.
Bleeping Computer

New Microsoft Azure AD CTS feature can be abused for lateral movement

Microsoft's new Azure Active Directory Cross-Tenant Synchronization (CTS) feature, introduced in June 2023, has created a new potential attack surface that might allow threat actors to more easily ...
CSOonline

Beware of overly permissive Azure AD cross-tenant synchronization policies

A new proof of concept shows that attackers can use Azure AD CTS to leap to Microsoft and non-Microsoft application across tenants. Lateral movement techniques have been a critical component of ...
Network World

How to configure a standby Azure AD Connect server

Here are some tips and tricks for creating redundant Azure AD Connect server that can help keep business running if the primary server fails. Organizations often use Azure AD Connect to maintain the ...