Conditional-Access
Lessons from the field. Always landing on my feet.
All
Cloud Security
Identity Security
AI Security
Microsoft Sentinel
Detection Engineering
DevSecOps
Threat Detection
Zero Trust
Agentic AI
Container Security
Infrastructure as Code
Microsoft Defender
Microsoft Entra
2 posts
Detecting OAuth Redirect Abuse with Microsoft Sentinel and Entra ID
On March 2, 2026, Microsoft published an advisory on OAuth redirection abuse enabling phishing and malware delivery. Microsoft described phishing-led campaigns where attackers register OAuth apps with attacker-controlled redirect URIs, then send โฆ
March 2026 Entra ID Changes: Passkey Auto-Enablement and Conditional Access Enforcement
Microsoft is shipping two Entra ID changes in March 2026 that will change how your users authenticate. Neither change requires administrator action to take effect, and that is precisely the risk. If you do not act before the deadlines, Microsoft โฆ