The Hacker News

Microsoft Patches Critical Entra ID Flaw Enabling Global Admin Impersonation Across Tenants

July 17, 2025; CVSS 10.0 Entra ID bug via legacy Graph enabled cross-tenant impersonation risking tenant compromise.
GovInfoSecurity

Microsoft Patches Critical Entra ID Flaw

Microsoft is disclosing a vulnerability that allowed hackers to obtain admin access to virtually any cloud instance of ...
SiliconANGLE

Three-quarters of mobile applications found to contain valid AWS access tokens

A disturbing new report finds that three-quarters of mobile applications analyzed contained valid Amazon Web Services Inc. access tokens that allowed access to private AWS cloud services. The findings ...