BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Gone in 60 Seconds… How Azure AD/Entra ID Tenants 
 are\n   Compromised\n   When: Friday\, Aug 9\, 10:10 - 10:50 PDT\n   Where
 : LVCC West/Floor 1/Hall 2/HW2-09-01 - [1]Map\n\n   Description:\n\n   60 
 seconds. 1 minute.\n\n   That's all it takes for an attacker to compromise
  an account with\n   access. And the account doesn't even need to have obv
 ious privileged\n   rights for the attacker to own the cloud environment.\
 n\n   Then\, once they get Global Admin rights to Azure AD/Entra ID\, it's
 \n   game over since they have full admin rights\, access to all data\, an
 d\n   can easily pivot to control all Azure subscription services and\n   
 content.\n\n   This talk walks through the most common ways that attackers
  compromise\n   the Microsoft Cloud\, specifically Azure AD/Entra ID and h
 ow to\n   mitigate these attack techniques.\n\n   Join me in this journey 
 of attacker methods involving account\n   compromise of admin and user acc
 ounts\, including interesting pairing\n   of role rights\, application per
 missions\, and Conditional Access gaps.\n\n   So go beyond Global Administ
 rator to better understand the Entra ID\n   roles that really matter in th
 e tenant and how application permissions\n   provide attacker opportunity 
 in most environments!\n\n   Attendees will learn both Azure AD/Entra ID at
 tack and defense during\n   this session.\n\n   SpeakerBio:  Sean Metcalf\
 n\n   Sean Metcalf is founder and CTO at Trimarc (TrimarcSecurity.com)\, a
 \n   professional services company which focuses on improving enterprise\n
    security. He is one of about 100 people in the world who holds the\n   
 Microsoft Certified Master Directory Services (MCM) Active Directory\n   c
 ertification\, is a former Microsoft MVP\, and has presented on Active\n  
  Directory\, Azure AD/Entra ID\, & Microsoft Cloud attack and defense at\n
    security conferences such as Black Hat\, Blue Team Con\, BSides\, DEF\n
    CON\, DerbyCon\, Troopers\, & the internal Microsoft BlueHat security\n
    conference. Sean is also a co-host on the popular weekly podcast\n   En
 terprise Security Weekly streamed live every Thursday with\n   recordings 
 available on YouTube. You may have read some of his Active\n   Directory &
  Azure AD security articles on his site\, ADSecurity.org.\n\n   '\n\n   1.
  #LVCCW_Level1_Hall2\n\n\n
DTEND:20240809T175000Z
DTSTART:20240809T171000Z
LOCATION:CLV - LVCC West/Floor 1/Hall 2/HW2-09-01
SUMMARY:Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromised
END:VEVENT
END:VCALENDAR