Unprivileged Users Can Create M365 and Security User Groups
TCM-KB-CLD-002
Last Updated: 6/26/2023
Microsoft 365
Microsoft 365 is a subscription-based service offered by Microsoft that includes a suite of productivity tools and cloud services. It provides access to applications like Word, Excel, PowerPoint, Outlook, and OneNote, along with services such as OneDrive for cloud storage. Depending on the plan, it also offers advanced security features, device management tools, and regular software updates.
Active Directory
Contributor
Joe Helle
Chief Hacking Officer
Recent Blogs
Issue
Unprivileged users are not restricted from creating M365 and Security Groups in Azure Active Directory.
Recommended Remediation
The following outlines the recommended steps that the systems and network administrators should take in order to secure the environment.
- After logging into the Azure tenant as a privileged user (i.e., Global Administrator), access the Azure Active Directory option.
- Select the Groups blade under Manage.
- Select General under Settings.
- In the General menu, set Self Service Group Management options to No. Set Security Groups and Microsoft 365 Groups to No. Click Save.
AI Assisted Pentest Reporting
In this blog, we’ll show how to generate pentest finding templates with DeepSeek AI using MITRE’s Common Weakness Enumeration (CWE) categories.
AI-Automated Credential Stuffing
Credential stuffing remains one of the most efficient paths to account takeover, and AI assistance is changing the scale and effectiveness of those attacks.
OSINT Resources and Tools
Explore some of the fundamental domains of OSINT research, plus a list of tools and resources to develop this discipline as a cyber security professional.
See What We Can Do For You
Download a sample penetration test report to see the results we can deliver for your organization.
See How We Can Secure Your Assets
Let’s talk about how TCM Security can solve your cybersecurity needs. Give us a call, send us an e-mail, or fill out the contact form below to get started.