Recent research indicates that over 10,000 SaaS applications may remain vulnerable to the nOAuth abuse method, despite being disclosed in June 2023. This vulnerability affects SaaS apps using Entra ID, allowing attackers to exploit misconfigurations and potentially access sensitive data without user awareness. #nOAuth #EntraID
Keypoints
- nOAuth exploits misconfigurations between SaaS applications and Entra ID for malicious access.
- Approximately 9% of tested SaaS apps from Microsoft Entra Gallery are vulnerable to nOAuth.
- Many developers are unaware that relying solely on Entra ID without proper configuration leaves applications exposed.
- The issue is architectural and cannot be fully fixed by Microsoft through updates alone.
- Victims often remain unaware of nOAuth attacks, which are difficult to detect and prevent without correct setup.
Read More: https://www.securityweek.com/thousands-of-saas-apps-could-still-be-susceptible-to-noauth/