Don't Just Read the News, Understand It.
Get Started
SubscribeLogin
Israel-Hamas Conflict
Artificial Intelligence
Drones
IPL
Social Media
Natural Disasters
Taxes
Cryptocurrency
Cricket
World Cup
Education
Baseball
Champions League
Published loading...Updated

Microsoft Entra’s Billing Roles Pose Privilege Escalation Risks in Azure

Summary by CSO Online
Threat actors can abuse one of Microsoft Entra’s by-design features, the software giant’s cloud-based identity and access management service, to gain persistence and escalate privilege inside a target Azure account. According to a BeyondTrust discovery, Entra (formerly Azure Active Directory) grants intended yet risky capabilities to B2B guest users through Microsoft’s billing permissions. “BeyondTrust researchers discovered that Entra guest use…
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.

2 Articles

All
Left
Center
Right
CSO OnlineCSO Online

Microsoft Entra’s billing roles pose privilege escalation risks in Azure

Threat actors can abuse one of Microsoft Entra’s by-design features, the software giant’s cloud-based identity and access management service, to gain persistence and escalate privilege inside a target Azure account. According to a BeyondTrust discovery, Entra (formerly Azure Active Directory) grants intended yet risky capabilities to B2B guest users through Microsoft’s billing permissions. “BeyondTrust researchers discovered that Entra guest use…

Read Full Article
HackReadHackRead

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

Researchers reveal how guest accounts with billing roles can create Azure subscriptions inside external tenants, gaining unexpected Owner access and opening hidden privilege risks.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.
Factuality

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

HackRead broke the news in on Wednesday, May 28, 2025.
Sources are mostly out of (0)
Stories disproportionately reported by the Left or the Right

Similar News Topics

Microsoft

Microsoft

United States

United States

News
For You
SearchBlindspotLocal