Backdoor An attacker who lives in a compromised tenant can deploy a rogue Cross Tenant Access configuration to maintain persistent access.
This allows the attacker to sync the compromised user account into the target tenant and grant attacker access to that tenant using the same initially compromised credentials.
If there are no explicit CTA inbound conditions blocking the sync, the compromised account will sync into thetarget tenant.
Scenario 2: Backdoor A backdoor allows an attacker to gain unauthorized access to a target tenant through a compromised account.
This scenario describes how an attacker attempts to create a new policy for the victim tenant with the following properties.
Terminologies Source tenant Tenant from where users and groups are getting synced Target tenant from where they are getting copied Target tenant resources with resources, which are Microsoft applications (Teams, SharePoint, etc.)
This willsync the compromised character into the mean person and grant attackers access to the target tenants.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply