🚨 New #EntraID vulnerability: Actor Tokens discovered by Dirk-jan. A flaw in token validation that lets an attacker escalate to Global Admin. 🪄 Undocumented MS tokens let attackers impersonate ANY user 🌍 Cross-tenant abuse → obtain Global Admin in every tenant 👀 Bypasses

🚀 Level Up Your Cloud Security Skills with BreachingAWS+ 🌩️ Improve your Hands-on skills and think like an attacker with BreachingAWS+ 🔥 What’s inside: ✅ 14 Lessons - structured for real-world learning ✅ 22 Attack Paths – learn adversary tradecraft ✅ 17 AWS Services –

🛠️🚀🌩️ OsintTool is a PowerShell 7+ reconnaissance framework built for #Azure/#EntraID tenants. It automates: > Tenant discovery & service fingerprinting > Auth flow probing & conditional access checks > DNS / network mapping & subdomain enumeration > Certificate transparency

🌐🔒 Cybersecurity Awareness Month is here 🔒🌐 A huge THANK YOU to our amazing sponsors of 2025 who enabled us to bring Cloud Village across conferences like DEF CON RSAC BSidesCharm BSidesSF and Out Of The Box Security Conference 💜 Your support empowers our talks, workshops, CTFs & labs and

🚨 How to stop the next #CloudBreach? 🔑 Least privilege + MFA 🔐 Secure secrets ⚙️ Harden configs & IaC 👀 Monitor & alert 🕵️ Red/Purple Team drills 🎓 Train your team on real attack paths 👉 Hands-on labs: cloudbreach.io/labs #CloudSecurity #BreachingAWS #BreachingAzure

🥷☁️AWS C2 alert: #AWS X-Ray — built for tracing — can be weaponized as a covert Command & Control channel. 🧩 Attackers encode commands/results in X-Ray annotations 🔐 Use legit SigV4 API calls → blends with real telemetry 👀 Hard to spot via traditional network defenses ⚙️

🚨 #Azure Outage Impact #Microsoft suffered a major Azure Front Door (AFD) disruption that knocked out access to Microsoft 365, Azure, and Entra admin portals — with users across Europe, Africa & the Middle East hit hardest. 🌍 🧩 The issue stemmed from capacity loss in AFD

🔥 Breaching Azure Advanced - Coming Soon Think like a #hacker. Break it to learn how to secure it. 🧩 Hands-on labs, not slides — real scenarios that teach offensive tradecraft and defensive controls. 🌐 Subdomain Takeovers — find the forgotten edges and claim the namespace. 💬

☁️ Cloud under fire: #Microsoft’s 2025 Digital Defense Report shows a surge in cloud-focused #cyberattacks 🔥 🔥 +87% rise in destructive campaigns on Azure 🧩 40% of ransomware now hybrid (cloud + on-prem) 🕵️‍♂️ OAuth & identity abuse increasing 🔑 Non-human identities = new weak

ATTENTION: Phishing Attack Uses Azure Blob Storage to Impersonate Microsoft! Attackers have found a new method to trick end users into logging in to a malicious login page, intercepting tokens, and infiltrating the tenant. What makes this particularly sneaky is that they are

🚨 Huge #AWS outage underway - major apps including Jira Cloud, Signal, Fortnite, Roblox, Zoom and many more are offline or facing serious disruption. The cloud giant’s US-EAST-1 region is reporting “significant error rates for requests made to the Amazon DynamoDB APIs” and

🛠️🧰 NoPrompt by NotSoSecure | Part of Claranet Cyber Security - #Azure CAP testing tool 🔎 Checks for password-only access to Microsoft Entra ID / Azure AD (MFA gaps) 🌐 Simulates OAuth2 & web logins across multiple device user-agents 🧩 Tests Microsoft Graph, AAD Graph, and Service Management APIs ⚖️

🚨 Microsoft Threat Intel Alert: Threat actors are actively targeting Azure Blob Storage! 🧩 Full MITRE ATT&CK chain observed: • Recon: scanning for public containers • Initial access: abusing misconfigs & SAS tokens • Persistence: hijacking trusted workflows • Credential

⚠️🌩️ Microsoft SharePoint Online attacks on the rise! 🎣 Adversaries abuse: 🔸 Power Automate → stealthy exfiltration 🔸 OAuth & Graph → persistence 🔸 Guest links → lateral movement 🛡️ Defend by: 🚫 Disabling anonymous sharing 🔒 Reviewing Power Automate flows ✅ Auditing

🔓💾 4TB SQL backup exposed online by EY 😱 Even the Big Four — proof that no org is too big for a simple cloud misconfig to burn them 👀 Key takeaways: 🔎 Discovered by NeoSecurity 🗄️ Full MSSQL .bak file publicly accessible 📁 Contained schema, customer, financial and

🚨🌩️ Azure Change alert Implicit outbound internet access for VMs is being retired, no more “mystery egress” in Azure 🔧 What’s happening: • #Azure VMs will no longer get default outbound Internet access • New VNets → private by default • You must explicitly configure egress

🚀 Breaching Azure Advanced drops 21 Nov — built for defenders, red-teamers & cloud-security pros who want to operate at an adversarial level inside enterprise #Azure. ⚔️🌩️ 🔍 What’s inside: 🪪 Entra ID attacks 🔑 SP/MSI lateral movement ⚙️ ARM exploitation 🐳 AKS &