CRITICALAdvisoryJul 15, 2026
Action required
Hunt for failed Entra authentication attempts with unusual or spoofed OAuth client IDs. Cross-reference with credential breach lists. Enable advanced sign-in risk detection and review non-interactive authentication patterns for anomalies.
Affected products
MicrosoftMicrosoft Entra IDAzure Active Directory