Attack Path now includes Entra OAuth application compromise
Defender for CloudMicrosoft
Attack Path now includes Entra OAuth application compromise
November 20, 2025
- Attack Path now shows how attackers use compromised Entra OAuth applications to move across environments and reach critical resources. This release helps security teams identify over-privileged identities and vulnerable OAuth applications to improve visibility and speed up remediation.
