Chasing Ghosts: Detecting Token Abuse in the Microsoft Cloud
Posted on
in Presentations
Attackers no longer need passwords to break in: tokens are the new prize. This session will expose how refresh tokens, access tokens, and Primary Refresh Tokens (PRTs) are stolen and abused in Microsoft Entra ID. Drawing on real-world cases, will show why detection feels like chasing ghosts and how to fight back.
Access This and Other RSAC™ Conference Presentations with Your Free RSAC Membership
Your RSAC™ Membership also includes AI-powered summaries, mind maps, and slides for Conference presentations, Group Discussions with experts, and more.
Watch Now >>
Share With Your Community