Oauth
The latest Oauth coverage — news, analysis, and updates from the WindowsNews.AI desk.
Duo MFA + AD FS integration guide for Windows Server 2016+ now live.
Microsoft Active Directory Federation Services (AD FS) has long been a trusted solution for organizations implementing single sign-on (SSO) and secure access to web applications. When paired with Duo...
nOAuth Vulnerability: How 15,000+ SaaS Apps Are at Risk and What Enterprises Must Do Now
A critical authentication flaw in Microsoft’s Entra ID (formerly Azure Active Directory) has exposed over 15,000 SaaS applications to potential exploitation, raising alarms across the cybersecurity...
Microsoft 365 Security Upgrade 2025: Blocking Legacy Protocols for Enhanced Protection
Microsoft is taking a bold step forward in cybersecurity by announcing plans to block legacy authentication protocols across its Microsoft 365 suite in 2025. This major security enhancement, part of...
Microsoft 365 to Disable Legacy Authentication by 2025: What IT Admins Need to Know
Microsoft is making a decisive move to eliminate legacy authentication protocols in Microsoft 365 by July 2025, marking a significant milestone in cloud security evolution. This change, part of...
Microsoft Delays SMTP AUTH Basic Auth Deprecation to 2026: Key Impacts & Migration Steps
Microsoft has extended its deadline for deprecating Basic Authentication (Basic Auth) in Exchange Online's SMTP AUTH protocol to April 2026, giving organizations additional time to transition to...
UNK_SneakyStrike: How Hackers Weaponize Cloud Security Tools to Breach 80,000+ Accounts
A sophisticated cyberattack campaign dubbed UNK_SneakyStrike has exposed a chilling new trend in cloud security breaches—hackers are now weaponizing legitimate penetration testing tools and cloud...
HVE Basic Auth Support Extended to 2028; Internal-Only Restriction Begins June 2025
Microsoft Extends Basic Authentication Support for High Volume Email Service Until 2028 with Key Updates Introduction Microsoft has announced significant updates to its High Volume Email (HVE)...
Microsoft's 2025 Email Overhaul: Mandating OAuth for All Automated Flows
For decades, enterprise email systems operated under an implicit trust model for internal communications, a paradigm Microsoft is decisively shattering with its 2025 High Volume Email (HVE) program...
Microsoft 365 High Volume Email Changes: Security, Migration & Impact
For enterprises deeply embedded in the Microsoft ecosystem, the rhythm of corporate communication is undergoing a seismic shift—one that fundamentally alters how organizations send high-volume...
Microsoft Enhances High Volume Email Service with Internal-Only Focus and Extended Authentication Support
Microsoft Enhances High Volume Email Service with Internal-Only Focus and Extended Authentication Support Microsoft has recently announced significant updates to its High Volume Email (HVE) service...
Microsoft Entra External ID Now Generally Supports OpenID Connect for Third-Party Identity Federation
Introduction Microsoft has announced the general availability of OpenID Connect (OIDC) identity provider support for Microsoft Entra External ID, marking a significant advancement in cloud-based...
Outlook.com iOS Outage: Authentication Failure Disrupts Apple Mail Access
In the ever-connected world of cloud services, a disruption to something as fundamental as email can feel like a digital earthquake. For users of Outlook.com on iOS devices, this metaphor became all...