Azure Active Directory Sign-Ins Log Tampering

Type: Threat Analysis

Azure Active Directory Sign-Ins Log Tampering



Learn how Secureworks CTU researchers revealed a flaw in the Azure Active Directory Connect Health agent protocol that could be exploited by a threat actor who has local administrator access to the AD FS server.

Article Link: Azure Active Directory Sign-Ins Log Tampering | Secureworks