September 2, 2025

FIDO Downgrade Attack Hits Microsoft Entra ID

September 2, 2025

Researchers show how spoofing unsupported browsers can force users off passkeys, exposing Entra ID accounts to phishing and session hijack. Who/What/When: On August 13, 2025, security researchers detailed a FIDO downgrade attack against Microsoft Entra ID that manipulates login flows to sidestep passkeys. Where/Why: By spoofing an unsupported browser, attackers trigger an error that removes…

FIDO Downgrade Attack Hits Microsoft Entra ID

Featured Posts

What is Azure Data Factory (ADF)?

How to demote a Domain Controller: A step-by-step guide

Healthcare data Breaches down almost 50 percent in the first month of 2021

Popular with Readers

Active Directory Users and Computers (ADUC) - An introduction and installation guide

Active Directory Sites

Active Directory Password Policy

Recently Added

Secure guest access in Azure AD (Microsoft Entra id)

Monitoring risky sign-ins with identity protection in entra id

Entra conditional access templates for hybrid identity

ManageEngine among notable vendors in Forrester’s report

5 ways to mitigate the rising threat of identity sprawl

6-step guide to Enhance Hybrid IT Security

SysAdmin Toolkit

Group Policy Guide

September 2, 2025

Featured Posts

Popular with Readers

Recently Added