Dark Reading

Attacks Targeting ADFS Token Signing Certificates Could Become Next Big Threat

Conventional access control and detection mechanisms alone are no longer sufficient to protect enterprise Active Directory Federation Services (ADFS) environments against targeted attacks. With ...
Bleeping Computer

Hackers steal Microsoft logins using legitimate ADFS redirects

Hackers are using a novel technique that combines legitimate office.com links with Active Directory Federation Services (ADFS) to redirect users to a phishing page that steals Microsoft 365 logins.
Bleeping Computer

Hackers spoof Microsoft ADFS login pages to steal credentials

A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication (MFA ...
Computing

Hackers exploit Microsoft ADFS with office.com redirects

Hackers are exploiting Microsoft’s Active Directory Federation Services (ADFS) alongside legitimate office.com redirects to trick users into handing over Microsoft 365 credentials, researchers have ...
Ars Technica

Help me make my ADFS environment more robust please.

Now that we have most of our services reliant on SSO and ADFS, I'd like to strengthen it a bit. Currently, we are setup in this fashion: fs1.company.com -> [FEDERATION PROXY] -> [ADFS SERVER (ALSO DC) ...