Topic: user impersonation

Sort by: Relevance | Date
  • Microsoft Entra ID Flaw Let Attackers Hijack Company Tenants
    September 27, 2025
    91%

    Microsoft Entra ID Flaw Let Attackers Hijack Company Tenants

    A critical vulnerability (CVE-2025-55241) in Microsoft's Entra ID could have allowed attackers to gain full control over an organization's tenant by exploiting unsigned "actor tokens" and a weakness in the Azure AD Graph API. The flaw enabled attackers to impersonate any user, escalate privileges...

    Read More »
  • ChatGPT's Browser Bot Appears to Block New York Times Links
    November 4, 2025
    83%

    ChatGPT's Browser Bot Appears to Block New York Times Links

    AI browsers like ChatGPT Atlas have agentic capabilities that perform complex tasks but may intentionally avoid accessing content from publishers in legal disputes with their parent companies. When in agent mode, Atlas mimics a regular Chrome session to bypass automated crawler restrictions, rais...

    Read More »

Related Topics

content summarization (1) security research (1) agentic capabilities (1) privilege escalation (1) copyright litigation (1) security vulnerability (1) ai browsers (1) vulnerability disclosure (1)