Findings Show MFA Bypass in Microsoft Azure Entra ID Using Seamless SSO
Findings Show MFA Bypass in Microsoft Azure Entra ID Using Seamless SSO
09 May 2024
Researchers at Pen Test Partners successfully bypassed Azure’s MFA requirement for SSO by changing the user-agent of a browser. They used a browser that resembled Chrome on Linux but encountered an error message stating MFA was required.