This Microsoft Entra ID Vulnerability Could Have Been Catastrophic

A pair of flaws in Microsoft's Entra ID identity and access management system could have allowed an attacker to gain access to virtually all Azure customer accounts.

Security News This Week: An App Used to Dox Charlie Kirk Critics Doxed Its Own Users Instead

Plus: A ransomeware gang steals data on 8,000 preschoolers, Microsoft blocks Israel’s military from using its cloud for surveillance, call-recording app Neon hits pause over security holes, and more.
InfoWorld

Designing AI-ready architectures in compliance-heavy environments

AI in healthcare and other industries won’t fly unless compliance is baked in from day one — not bolted on after.

Microsoft Entra ID flaw allowed hijacking any company's tenant

A critical combination of legacy components could have allowed complete access to the Microsoft Entra ID tenant of every company in the world.
The Hacker News

Microsoft Patches Critical Entra ID Flaw Enabling Global Admin Impersonation Across Tenants

July 17, 2025; CVSS 10.0 Entra ID bug via legacy Graph enabled cross-tenant impersonation risking tenant compromise.
GovInfoSecurity

Microsoft Patches Critical Entra ID Flaw

Microsoft is disclosing a vulnerability that allowed hackers to obtain admin access to virtually any cloud instance of SharePoint or Exchange - although no evidence ...

Microsoft patches critical Entra ID flaws that endangered millions of tenants

Microsoft recently patched a critical security vulnerability in its Entra ID system. The flaw, tracked as CVE-2025-55241, could have been exploited to take control of any ...
Biometric Update

Microsoft patch of widespread Entra ID authentication flaw disclosed

A vulnerability that could potentially have led to the compromise of every Entra ID tenant in the world has been patched prior to being publicly revealed.