News

Bleeping Computer2y
Microsoft: Russian malware hijacks ADFS to log in as anyone in Windows - BleepingComputer
Microsoft has discovered a new malware used by the Russian hacker group APT29 (a.k.a. NOBELIUM, Cozy Bear) that enables authentication as anyone in a compromised network.
Bleeping Computer5mon
Hackers spoof Microsoft ADFS login pages to steal credentials - BleepingComputer
A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication ...
SiliconANGLE6y
Microsoft ADFS vulnerability allows hackers to bypass multifactor authentication
A newly discovered vulnerability in Microsoft Corp.'s Activity Directory Federation Services allows hackers to bypass multifactor authentication safeguards in a potentially serious threat to a standar ...
Redmond Magazine3y
Microsoft Eliminates Need for ADFS with Azure Active Directory Certificate-Based Authentication Preview
Microsoft on Monday announced the availability of Azure Active Directory certificate-based authentication (CBA) at the public preview stage.. CBA lets organizations authenticate with Azure AD ...
Infosecurity-magazine.com5mon
Sophisticated Phishing Attack Bypasses Microsoft ADFS MFA
Most affected organizations are in the US, Canada, Australia and Europe. Companies with legacy authentication systems like ADFS are particularly vulnerable, as many have yet to transition to Microsoft ...