TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8884

@thehackernews

The Hacker News

Views8,800Post view count
PostedApr 2804/28/2026, 06:41 AM
Post content

Post content

😳 Entra ID Agent ID Administrator role flaw enabled service principal takeover. Users could take over non-agent service principals, add credentials, and escalate privileges before Microsoft’s April 9, 2026 patch. 🔗 See how the attack worked → https://thehackernews.com/2026/04/microsoft-patches-entra-id-role-flaw.html