Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/111824817638176738">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Saturday, 27-Jan-2024 08:22:01 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250105013211.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/111823778988979816" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p>Important point by <a href="https://infosec.exchange/@wald0">@wald0</a> re the MSFT breach:</p><p>The AppRoleAssignment.ReadWrite.All MS Graph app role BYPASSES the consent process. This is BY DESIGN. This app role is EXTRAORDINARILY dangerous.</p><p><a href="https://winsmarts.com/how-to-grant-admin-consent-to-an-api-programmatically-e32f4a100e9d" rel="nofollow noreferrer">https://winsmarts.com/how-to-grant-admin-consent-to-an-api-programmatically-e32f4a100e9d</a></p><p>One to hunt on. Looks like a really easy own goal.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2609876#notice-5230141">In conversation</a><time datetime="2024-01-27T08:22:01+09:00" title="Saturday, 27-Jan-2024 08:22:01 JST">about a year ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/111824817638176738" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/111824817638176738">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/2170341">Untitled attachment</a></label><br><a href="https://cyberplace.social/system/media_attachments/files/111/824/817/421/301/521/original/292c20f40dd79150.jpeg" rel="external">https://cyberplace.social/system/media_attachments/files/111/824/817/421/301/521/original/292c20f40dd79150.jpeg</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Saturday, 27-Jan-2024 08:22:01 JSTKevin Beaumont
in reply to
- Andy Robbins
Important point by @wald0 re the MSFT breach:
The AppRoleAssignment.ReadWrite.All MS Graph app role BYPASSES the consent process. This is BY DESIGN. This app role is EXTRAORDINARILY dangerous.
https://winsmarts.com/how-to-grant-admin-consent-to-an-api-programmatically-e32f4a100e9d
One to hunt on. Looks like a really easy own goal.
In conversationabout a year ago from cyberplace.socialpermalink
Attachments
1. Untitled attachment
  https://cyberplace.social/system/media_attachments/files/111/824/817/421/301/521/original/292c20f40dd79150.jpeg

Public

Embed Notice

HTML Code

Corresponding Notice