Convincing a victim to click a specially crafted link would allow the attacker
to bypass the Identity-Aware Proxy (a core component of BeyondCorp).
Fri, Sep 17th, 2021
Azure AD users could escalate their privileges using the Log Analytics
Contributor role to reach the full Subscription Contributor role.
Mon, Sep 13th, 2021
Allows an attacker with privileges in the account to share resources outside
of the account even when an org policy restricts this, thus enabling them to backdoor
Fri, Sep 10th, 2021