Backdooring and Hijacking Azure AD Accounts by Abusing External Identities

Explore the security implications of external identities in Azure Active Directory through this 37-minute Black Hat conference talk. Dive into the concept of external identities, including guest users, and their role in facilitating collaboration across organizations. Learn how B2B collaboration works within Azure AD and discover potential vulnerabilities associated with these external accounts. Gain insights into the management of external user identities, both within and outside of Azure AD tenants. Presented by Dirk-jan Mollema, this talk provides valuable information for cybersecurity professionals and Azure administrators looking to understand and mitigate risks related to external identity management in cloud environments.

Backdooring and Hijacking Azure AD Accounts by Abusing External Identities