Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Microsoft Bookings Flaw Allows Impersonation

November 11, 2024
Reading Time: 2 mins read
in Alerts
Microsoft Bookings Flaw Allows Impersonation

A critical vulnerability in Microsoft Bookings has been discovered, posing significant security risks to organizations using Microsoft 365 services. The flaw, inherent in the default configuration of the “Shared Booking Pages” feature, allows attackers to create unauthorized Entra (formerly Azure AD) accounts and impersonate legitimate users. This can lead to serious security breaches, as attackers can gain unauthorized access to systems and potentially conduct sophisticated phishing campaigns or access sensitive company data.

The vulnerability stems from the fact that when a user creates a shared Booking page, it automatically generates a fully functional account in Entra without requiring administrative privileges. Attackers who have compromised a Microsoft 365 user account can exploit this flaw to create accounts that mimic legitimate employees, bypassing impersonation filters and gaining access to email addresses that may belong to former employees. This could allow attackers to reset passwords for external services, verify domain ownership for SSL certificates, and create hidden, fully functional mailboxes that do not consume Microsoft 365 licenses.

The impact of this vulnerability extends to the potential for attackers to impersonate high-profile individuals within an organization, allowing them to conduct advanced phishing attacks and potentially gain control over critical systems. The created accounts can send and receive emails regardless of sharing settings, enabling attackers to intercept sensitive communications and reset online services linked to compromised email addresses. This makes the flaw particularly dangerous as it can lead to significant data loss, system compromise, and financial fraud.

To mitigate the risks associated with this vulnerability, security experts recommend organizations take several proactive steps. These include auditing existing Shared Booking Pages using ExchangeOnline PowerShell, disabling the ability for end users to create shared Booking pages unless necessary, and monitoring Entra accounts for unusual creation activities. Additionally, businesses should regularly review and revoke unnecessary mailbox permissions and disable the Bookings feature if it is not in use. As the cybersecurity landscape continues to evolve, organizations must be vigilant in securing their Microsoft 365 environments and take immediate action to protect against potential exploitation of this flaw.

Reference:
  • Microsoft Bookings Flaw Allows Hackers to Create and Impersonate User Accounts
Tags: BreachesCyber AlertsCyber Alerts 2024Cyber threatsMicrosoftMicrosoft 365Microsoft EntraNovember 2024Vulnerabilities
ADVERTISEMENT

Related Posts

FreeDrain Phishing Steals Crypto Funds

FBI Warns Cybercriminals Exploit Routers

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

X Scam Targets Crypto Users with Fake Ads

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

FreeDrain Phishing Steals Crypto Funds

May 9, 2025
COLDRIVER Hackers Target Sensitive Data

COLDRIVER Hackers Target Sensitive Data

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

CoGUI Targets Consumer and Finance Brands

May 8, 2025

Latest Alerts

X Scam Targets Crypto Users with Fake Ads

FBI Warns Cybercriminals Exploit Routers

FreeDrain Phishing Steals Crypto Funds

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

Subscribe to our newsletter

    Latest Incidents

    LockBit Ransomware Data Leaked After Hack

    Spanish Consumer Group Faces Cyberattack

    Education Giant Pearson Hit by Data Breach

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial