Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts
Breaches and Incidents
May 10, 2025
Hackread
A targeted campaign exploited Microsoft Entra ID’s legacy authentication protocol BAV2ROPC, allowing attackers to bypass MFA and gain unauthorized access to admin accounts across finance, healthcare, and tech sectors.
Read More
Microsoft Entra ID
Legacy Authentication
BAV2ROPC
multi-factor authentication bypass
Credential Spraying
Publisher
Previous
OtterCookie Malware Targets Windows, Linux, and macOS w ...
Malware and Vulnerabilities
Next
Hackers Weaponizing PDF Invoices to Attack Windows, Lin ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/985a_Shutterstock_2422166115.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/b7bf_shutterstock_1285016485.jpg)
