Microsoft

Accelerating sustainability and resilience with AI-powered innovation

Across industries, leaders are using AI to help balance competing objectives like reducing costs and environmental impacts ...
SecurityWeek

All Microsoft Entra Tenants Were Exposed to Silent Compromise via Invisible Actor Tokens: Researcher

Microsoft patches CVE-2025-55241, an Azure Entra elevation of privilege vulnerability that could have been exploited to ...
GitHub

A PowerShell tool to identify and audit user-consented applications in Microsoft Entra ID (Azure AD), with a focus on uncovering "Shadow IT" and security risks.

Shadowman is a powerful and targeted PowerShell script designed for IT administrators and security professionals. It goes beyond a standard application inventory by focusing specifically on ...
Infosecurity-magazine.com

Azure AD Credentials Exposed in Public App Settings File

A cybersecurity assessment has uncovered a serious vulnerability involving Azure Active Directory (Azure AD). Resecurity’s HUNTER Team discovered that application credentials, specifically the ...
GitHub

Import Az.Accounts==5.3.0 fails when using Azure Powershell (Azure DevOps pipeline task)

Azure PS Team bugThis issue requires a change to an existing behavior in the product in order to be resolved.This issue requires a change to an existing behavior in the product in order to be resolved ...
winbuzzer.com

Microsoft to Enforce MFA for Azure Command-Line Tools Starting October 2025

Microsoft is extending its mandatory Multi-Factor Authentication (MFA) policy to cover command-line and programmatic access to Azure, a critical step that will reshape developer and IT operations ...
Bleeping Computer

Microsoft to enforce MFA for Azure resource management in October

Starting in October, Microsoft will enforce multi-factor authentication (MFA) for all Azure resource management actions to protect Azure clients from unauthorized access attempts. This change is part ...