Microsoft found that two separate threat actors were operating inside the same compromised environment at the same time, complicating detection and incident response. The attacks were linked to ...
A critical token validation failure in Microsoft Entra ID (previously Azure Active Directory) could have allowed attackers to impersonate any user, including Global Administrators, across any tenant.