Lessons from the breach: Microsoft and Midnight Blizzard

On January 12, 2024, state-sponsored hacking group Midnight Blizzard breached Microsoft's infrastructure, exploiting excessive permissions granted to a legacy OAuth application and revealing machine identities as the key vulnerability. Limited visibility into true permissions of identities and limitations of role/group-based management contributed to the attack remaining undetected for so long. Veza offers comprehensive visibility into access rights for all identities, detailed insights into specific permissions held by each identity, and risk prioritization based on granular permissions evaluation, helping organizations protect against similar threats.