@ericonidentity.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Eric Woodruff

ericonidentity.com

did:plc:kvzuqu2n6dql3kharexvdm6e

At @wearetroopers.bsky.social I dropped new research on #nOAuth, an abuse of #EntraID that allows you to spoof users in vulnerable SaaS applications. The attack is still alive and well. You can read all about it here: #Entra #M365 #infosec https://www.semperis.com/blog/noauth-abuse-alert-full-account-takeover

2025-06-25T16:56:56.702Z