At Black Hat USA 2025, Dirk-jan Mollema showed how low-privilege cloud accounts can be turned into hybrid admins, bypassing API controls undetected.
Source link
Hacker Reveals New Authentication Bypass in Active Directory and Entra ID Environments
-