Dark Reading

Microsoft Azure Shared Key Misconfiguration Could Lead to RCE

Abuse of shared key authorizations, a default on Azure storage accounts, could allow a threat actor to steal higher privileged access tokens, move laterally throughout the network, and execute remote ...
Bleeping Computer

Microsoft still unsure how hackers stole Azure AD signing key

Microsoft says it still doesn't know how Chinese hackers stole an inactive Microsoft account (MSA) consumer signing key used to breach the Exchange Online and Azure AD accounts of two dozen ...
Redmond Magazine

Microsoft Previews Double Key Encryption for Protecting Microsoft 365 Data

Microsoft this week announced a preview of Double Key Encryption for data created with Microsoft 365 applications. It's yet another Microsoft 365 data protection scheme, where one key gets stored in ...