Redmond Magazine

Microsoft Previews SAML Token Encryption in Azure Active Directory

Microsoft has been adding to its Azure Active Directory capabilities in recent weeks. New capabilities at the preview stage were announced. Microsoft also rolled out an ability to detect Microsoft ...
MCPmag

Token Lifetime Policies for Azure Active Directory Hits Preview

A new application control feature in Azure Active Directory is now available for preview. The control gets managed by specifying how long a token that's used to access an application is allowed to ...
Redmond Magazine

Microsoft Previews Hardware OATH Tokens with Azure Multifactor Authentication

Microsoft on Tuesday announced a preview of the ability to use hardware OATH tokens with the Azure multifactor authentication service. Hardware OATH tokens use physical objects, such as dongles and ...
Bleeping Computer

Microsoft still unsure how hackers stole Azure AD signing key

Microsoft says it still doesn't know how Chinese hackers stole an inactive Microsoft account (MSA) consumer signing key used to breach the Exchange Online and Azure AD accounts of two dozen ...
Dark Reading

Microsoft IDs Security Gaps that Let Threat Actors Steal Signing Key

Several security missteps on Microsoft's part allowed a China-based threat actor to forge authentication tokens and access user email from some 25 Microsoft enterprise customers earlier this year, the ...
CRN

Microsoft: Cloud Email Breach Still Under ‘Ongoing Investigation’

While an API flaw that enabled the attack to succeed has been fixed, Microsoft is still trying to figure out how the attackers were able to acquire an Azure Active Directory key in the first place.