Threat actors could exploit a vulnerability in Microsoft Azure Active Directory's Open Authorization process dubbed "nOAuth" to facilitate complete account takeovers, reports The Hacker News.
Article Link: Total account takeover possible with Microsoft Azure AD flaw | SC Media