{"title":"Microsoft Entra ID flaw allowed hijacking any company's tenant","blog_title":"TT Security Log","url":"https://security-log.hatenablog.com/entry/2025/09/21/000000","type":"rich","categories":["\u8a8d\u8a3c: Microsoft Entra ID / Azure Active Directory / Azule AD","*\u8106\u5f31\u6027"],"image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/t/tanigawa/20250922/20250922083717.png","author_url":"https://blog.hatena.ne.jp/tanigawa/","version":"1.0","width":"100%","description":"\u3010\u8a33\u3011Microsoft Entra ID\u306e\u8106\u5f31\u6027\u306b\u3088\u308a\u3001\u3042\u3089\u3086\u308b\u4f01\u696d\u306e\u30c6\u30ca\u30f3\u30c8\u3092\u4e57\u3063\u53d6\u308b\u53ef\u80fd\u6027\u304c\u3042\u3063\u305f \u3010\u56f3\u8868\u3011 Azure AD Graph\u30a8\u30e9\u30fc\uff1a\u30c8\u30fc\u30af\u30f3\u306f\u6709\u52b9\u3060\u304c\u30e6\u30fc\u30b6\u30fc\u304c\u5b58\u5728\u3057\u306a\u3044 (Dirk-jan Mollema) \u51fa\u5178: https://www.bleepingcomputer.com/news/security/microsoft-entra-id-flaw-allowed-hijacking-any-companys-tenant/ \u3010\u8981\u7d04\u3011 Microsoft Entra ID\u306b\u304a\u3044\u3066\u3001\u7f72\u540d\u3055\u308c\u3066\u3044\u306a\u3044\u300c\u30a2\u30af\u30bf\u30fc\u30c8\u30fc\u30af\u30f3\u300d\u3068\u5ec3\u6b62\u4e88\u5b9a\u306eAzure AD Graph API\u306e\u2026","blog_url":"https://security-log.hatenablog.com/","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fsecurity-log.hatenablog.com%2Fentry%2F2025%2F09%2F21%2F000000\" title=\"Microsoft Entra ID flaw allowed hijacking any company&#39;s tenant - TT Security Log\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","provider_name":"Hatena Blog","provider_url":"https://hatena.blog","height":"190","author_name":"tanigawa","published":"2025-09-21 00:00:00"}