Varonis Threat Labs created Breach at the Beach, a hands-on Entra ID CTF designed to teach security practitioners how modern threats abuse identity systems and exfiltrate data in cloud-native environments. The experience uses real-world cases, non-human identity scenarios, and AI-era attack techniques to help defenders build stronger detection and least-privilege practices. #VaronisThreatLabs #BreachAtTheBeach #EntraID #DoronKapah #MarkVaitsman #Pixel
Keypoints
- Breach at the Beach is a free Entra ID capture-the-flag training experience.
- The CTF shows how threat actors abuse legitimate features to exfiltrate sensitive data.
- It reflects real customer cases seen by Varonis researchers Doron Kapah and Mark Vaitsman.
- The challenge focuses on AI-era identity risks, including non-human identities and audit visibility gaps.
- Players can earn CPE credits, badges, and a completion certificate by finishing all stages.
Read More: https://www.bleepingcomputer.com/news/security/breach-at-the-beach-play-the-ultimate-entra-id-ctf/