Dark Reading

Threat Actor Abuses TeamFiltration for Entra ID Account Takeovers

A single threat has triggered an alarming rise in the abuse of TeamFiltration, an open source penetration-testing framework designed to compromise Microsoft Entra ID accounts. According to new ...
Redmond Magazine

Widespread Entra ID Account Takeover Campaign Detected Using Open Source Tool

Security researchers at Calif.-based Proofpoint have uncovered a large-scale account takeover campaign aimed at Microsoft Entra ID environments. The attackers are using TeamFiltration, an open source ...
Bleeping Computer

Password-spraying attacks target 80,000 Microsoft Entra ID accounts

Hackers have been using the TeamFiltration pentesting framework to target more than 80,000 Microsoft Entra ID accounts at hundreds of organizations worldwide. The campaign started last December and ...
Bleeping Computer

New downgrade attack can bypass FIDO auth in Microsoft Entra ID

Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and ...
TechRadar

Over 80,000 Microsoft Entra ID accounts hit by password spraying attacks

Hackers are abusing a legitimate tool to target Entra ID accounts The password spraying attack targeted some 80,000 accounts Attackers managed to take over some accounts, accessing Microsoft Teams, ...