entra id • William OGOU Cybersecurity Blog

img of Critical Entra ID Impersonation Flaw - CVE-2025-55241

A critical flaw in Entra ID (CVE-2025-55241) allowed attackers to impersonate anyone. This is a CISO's guide to the 'Actor Token' vulnerability, the attack chain, and how to hunt for compromise.

img of Passkeys: Passwordless and Phishing-Resistant Future

May 2, 2025 12 min read

iam

Passkeys: Passwordless and Phishing-Resistant Future By William OGOU

Passkeys are revolutionizing authentication, offering phishing resistance and convenience. Explore how this passwordless future works, its benefits, challenges, and enterprise adoption.

img of Hybrid Identity Security: The Hidden Permissions Risk in Entra ID Sync

Apr 25, 2025 7 min read

cloud-security

Hybrid Identity Security: The Hidden Permissions Risk in Entra ID Sync By William OGOU

Unpack Hybrid Identity Security risks: Discover how Entra ID synchronization roles retain potent implicit permissions, creating exposure even after hardening. Learn to protect your hybrid environment.