Fabian BaderNov 13, 2024

Great writeup that demonstrates that Intune is really powerful and you should not manage your PAW devices from the same environment they manage.

#Security #Intune #ControlPlane #RedTenant

https://cloud.google.com/blog/topics/threat-intelligence/abusing-intune-permissions-entra-id-environments

Abusing Intune Permissions for Lateral Movement and Privilege Escalation in Entra ID Native Environments | Google Cloud Blog

We demonstrate a novel way how adversaries can move laterally and elevate privileges within Microsoft Entra ID.

Google Cloud Blog