Securing AI and Cloud with the Zero Day Quest

Toward greater transparency: Publishing machine-readable CSAF files

Congratulations to the Top MSRC 2024 Q3 Security Researchers!

Announcing the BlueHat 2024 Sessions 

Announcing BlueHat 2024: Call for Papers now open 

Summary Summary Microsoft has developed mitigations for an insecure anti-pattern used in Azure AD (AAD) applications highlighted by Descope, and reported to Microsoft, where use of the email claim from access tokens for authorization can lead to an escalation of privilege. An attacker can falsify the email claim in tokens issued to applications.

Headline

Potential Risk of Privilege Escalation in Azure AD Applications

msrc-blog: Latest News