Azure Active Directory Exposes Internal Information
05-Apr-22
As of this publishing, approximately 88 percent of Fortune 500 firms were using Microsoft Azure Active Directory (Azure AD) as an identity and access management solution.
OSINT is widely used by threat actors to conduct reconnaissance. CTUTM researchers discovered multiple application programming interfaces (APIs) that allow any Azure AD-enabled business to access internal data. Licensing information, mailbox information, and directory synchronization status were among the details gathered.
