Semperis Research Uncovers Ongoing Risk from nOAuth Vulnerability in Microsoft Entra ID, Affecting Enterprise SaaS Applications

3 months ago 4
ARTICLE AD BOX
Semperis, a provider of AI-powered identity security and cyber resilience, today released new research into nOauth known vulnerability in Microsoft's Entra ID that enables full account takeover in vulnerable SaaS apps with minimal attacker effort, posing a severe risk to enterprises relying on cross-tenant Entra integrations. Eric Woodruff, Semperis' Chief Identity Architect, presented his findings this week at the Troopers 2025 in Heidelberg, Germany.
Read Entire Article