Industry News  New Threat Detected: Microsoft Cross-Tenant Synchronization Under Attack
Industry News

New Threat Detected: Microsoft Cross-Tenant Synchronization Under Attack

Mister CybersecurityMister CybersecurityAugust 16, 20230
PinterestLinkedInTumblrRedditVKWhatsApp
More stories

As technology continues to advance, the world of artificial intelligence is rapidly expanding. AI is being utilized in various industries, from healthcare to finance, to improve efficiency and accuracy in decision-making processes. One area where AI is making a significant impact is in customer service. Companies are increasingly turning to AI-powered chatbots to provide instant support to their customers, offering quick responses to inquiries and resolving issues in real-time.

AI chatbots are able to handle a high volume of customer queries simultaneously, freeing up human agents to focus on more complex tasks. These chatbots are programmed with natural language processing capabilities, allowing them to understand and respond to customer inquiries in a conversational manner. This human-like interaction helps to create a more personalized and engaging customer experience, ultimately leading to higher customer satisfaction and loyalty.

In addition to providing instant support, AI chatbots are also able to gather valuable data on customer interactions. By analyzing these interactions, companies can gain insights into customer preferences and behavior, allowing them to tailor their products and services to better meet customer needs. This data-driven approach can help companies to make more informed business decisions and drive growth.

One of the key benefits of using AI chatbots in customer service is their ability to operate 24/7. Customers expect round-the-clock support in today’s fast-paced world, and AI chatbots can provide this level of service without the need for human intervention. This constant availability ensures that customers receive timely assistance whenever they need it, leading to improved customer satisfaction and retention rates.

Overall, the use of AI chatbots in customer service is revolutionizing the way companies interact with their customers. By leveraging the power of artificial intelligence, companies can provide fast, personalized, and efficient support to their customers, leading to improved customer satisfaction and loyalty. As technology continues to evolve, AI chatbots will undoubtedly play an increasingly important role in shaping the future of customer service.

October 30, 2024



Attackers are focusing on Microsoft identities to realize entry to Microsoft purposes and SaaS purposes. Nobelium, the group behind the SolarWinds assaults, has been utilizing native performance like Federated Trusts to keep up persistent entry to Microsoft tenants. This article explores one other native performance that enables attackers to realize entry to related tenants or deploy a rogue configuration for persistence. While this system has not been noticed within the wild, Vectra AI supplies particulars for defenders to know the assault and easy methods to monitor for it. Vectra AI’s prospects have already got protection and detection capabilities for this system.

Cross-Tenant Synchronization (CTS) is a function that enables organizations to synchronize customers and teams from different tenants and grant them entry to assets within the goal tenant. It’s a helpful function however may also be exploited for reconnaissance, lateral motion, and persistence assaults if not configured appropriately. This article explains the potential dangers and assault paths that adversaries can leverage to use CTS.

The assault methods described on this article require sure licenses and a privileged account compromise or privilege escalation within the compromised tenant. An attacker can use CTS to maneuver laterally from one tenant to a different related tenant or deploy a rogue CTS configuration as a backdoor for persistent entry.

To defend in opposition to these assaults, goal tenants ought to keep away from implementing a default inbound CTS configuration and deploy a much less inclusive configuration that explicitly defines accounts or teams allowed to entry via CTS. Source tenants ought to regulate and monitor teams allowed to entry different tenants by way of CTS. Vectra AI’s AI-driven detections can detect and reply to those privilege abuse situations.

In abstract, attackers are focusing on Microsoft identities to realize entry to related Microsoft purposes and SaaS purposes. They are utilizing native performance like Federated Trusts and misconfigured CTS configurations for persistence and lateral motion. Organizations can defend in opposition to these assaults by implementing correct configurations and monitoring, and Vectra AI supplies detection capabilities for these methods.



Source hyperlink

PinterestLinkedInTumblrRedditVKWhatsApp

Mister Cybersecurity

The Vulnerability of Your Sensitive Data
Critical Vulnerability Results in Hacking of Nearly 2,000 Citrix NetScaler Instances
Related posts
Load more
Leave a Reply

Your email address will not be published. Required fields are marked *

Read also
Industry News

Critical Windows Server Vulnerability Opens Door to Privilege Escalation



In recent developments, a significant vulnerability has been identified within Windows Server systems, posing a substantial security risk. This flaw, if exploited, provides an accessible pathway for attackers to escalate privileges, potentially compromising sensitive data and systems. Such vulnerabilities are particularly concerning given the widespread use of Windows Server in numerous critical infrastructures and enterprises worldwide.

The discovery of this security gap has raised alarms across the cybersecurity community, emphasizing the need for immediate attention and remediation. Experts have pointed out that the flaw allows malicious actors to gain unauthorized access and control, bypassing usual security protocols. This kind of privilege escalation can lead to severe breaches, threatening the integrity of entire networks.

Organizations are urged to prioritize updates and patches provided by Microsoft to mitigate the risks associated with this vulnerability. The tech giant has already released a statement acknowledging the issue and is actively working on solutions to fortify their systems against potential exploitation. The swift response from Microsoft highlights the critical nature of the flaw and the importance of maintaining rigorous security measures.

Cybersecurity professionals recommend that IT departments conduct thorough audits and apply the necessary patches without delay. In addition, raising awareness about the vulnerability and educating staff on recognizing potential threats can help mitigate risks. As the digital landscape evolves, staying informed about such vulnerabilities is crucial to safeguarding organizational assets.

In conclusion, this Windows Server flaw underscores the ever-present challenges in maintaining robust cybersecurity defenses. Vigilance and proactive measures are key to protecting sensitive information and maintaining trust in digital infrastructures. Organizations must remain diligent and responsive to emerging threats, ensuring their systems are secure and resilient against potential attacks.

May 21, 20250
Load more