Mastodawn

Eric Woodruff [MS MVP]

Nov 18

Anthropic - AI can do cyber without much human.

Me - AI can you help me with this research:

Eric Woodruff [MS MVP]

Sep 3, 2025

I’ve been finding the #Entra Usage & Insights report useless lately when it comes to #passkey reporting.

Why? It’s broken.

It’s concerning that this seems to be an ongoing issue that isn’t tenant specific and Microsoft hasn’t caught it.

#EntraID

https://ericonidentity.com/2025/09/02/entra-useless-insights-report/

Entra Useless Insights Report - Eric on Identity

Exploring the Entra Usage & Insights report on MFA usage, and the issues with the reports lack of accuracy, as well as a workaround.

Eric on Identity

Eric Woodruff [MS MVP]

Jun 29, 2025

Going right from @WEareTROOPERS in Heidelberg to @fwdcloudsec in Denver ✈️ - from one excellent conference to another!

I’m looking forward to speaking Monday @ 2:00pm in track 1 on the dangers of #nOAuth, with some new and tweaked slides and talking points!

#Entra #EntraID #infosec #cybersecurity #mvpbuzz

Eric Woodruff [MS MVP]

Jun 25, 2025

At @WEareTROOPERS I dropped new research on #nOAuth, an abuse of #EntraID that allows you to spoof users in vulnerable SaaS applications.

The attack is still alive and well.

You can read all about it here:

#Entra #M365 #infosec

https://www.semperis.com/blog/noauth-abuse-alert-full-account-takeover

New nOAuth Abuse Alert: Entra Cross-Tenant Saas Apps at Risk

Think nOAuth abuse is old news? We wish. Our recent testing shows that nearly 10% of apps in the Microsoft Entra Gallery remain vulnerable.

Semperis

Eric Woodruff [MS MVP]

Mar 1, 2025

Nishant Kaushik Feb 20, 2025

Really good analysis by @ericonidentity on a fascinating new scam approach that leverages legitimate emails from service providers in a novel (to me at least) way. Read it to learn how it works.
#TheWorkNeverEnds #NewThreatModels #Fraud
https://ericonidentity.com/2025/02/20/an-interesting-m365-billing-scam/

An interesting M365 billing scam - Eric on Identity

A look at a recent spam scam email that I received, trying to understand what mechanism the attacker is using to deliver the scam email.

Eric on Identity

Eric Woodruff [MS MVP]

Nov 12, 2024

Haven’t been highly active on the socials lately… trying to change that a bit.

En route to #HIPConf24, where I’ll be presenting on #UnOauthorized tomorrow, as well as joining a panel with Thomas Naunheim on workload identities, and having some good hallway conversations. Looking forward to seeing folks!

#Entra #EntraID #infosec

Eric Woodruff [MS MVP]

Aug 8, 2024

I've been quiet on here for a while, but wanted to share the blog that details much of UnOAuthorized from my #bhusa talk yesterday.

#blackhat #blackhat2024 #EntraID #azure #microsoft365 #microsoft #infosec

https://www.semperis.com/blog/unoauthorized-privilege-elevation-through-microsoft-applications/

Privilege Elevation in Entra ID: UnOAuthorized | Semperis Research

Recent Semperis security research findings reveal a past potential for privilege elevation in Entra ID. Learn more in this article.

Semperis

Show thread

Eric Woodruff [MS MVP]

Aug 8, 2024

@BlueTeamCon Looking forward to it!

Eric Woodruff [MS MVP]

Aug 8, 2024

Blue Team Con Aug 8, 2024

📣 Blue Team Con 2024 Speaker Highlight 📣

Eric Woodruff
Talk Title: Death By A Thousand Control Planes: The Reality Of Modern Privileged Access

View abstract: https://blueteamcon.com/directory/the-reality-of-modern-privileged-access/

Death by a Thousand Control Planes: The Reality of Modern Privileged Access - Blue Team Con

Learn more about our BTC 2024 talk: Death by a Thousand Control Planes: The Reality of Modern Privileged Access - presented by Eric Woodruff.

Blue Team Con

Eric Woodruff [MS MVP]

Mar 10, 2024

The obligatory starting my journey to the MVP Summit picture 😜😎

#mvpbuzz #mvpsummit

Blog	https://ericonidentity.com
Twitter	https://twitter.com/msft_hiker
LinkedIn	https://www.linkedin.com/in/msfthiker
Linktree	https://linktr.ee/ericonidentity