Alert icon Keyboard navigation enabled.
Alert icon TAB or Shift+TAB to navigate across. Down ↓ to open menu. ESC to close menu.
Alert icon Down ↓ to select section. Right → to activate. Up ↑ / Down ↓ / Tab to traverse all. ESC to exit.
BeyondTrust
Skip to content Use space or enter to skip.

What can we help you find today?

Instant Results
  • Website Results
  • Technical Documentation

Filter Options

Focus your search

Filtering by

Your recent searches:

Contact Us Chat with Sales Get Support
  • English
  • Deutsch
  • français
  • español
  • 한국어
  • português

Info icon Announcement: 2026 KuppingerCole PAM Leadership Compass: BeyondTrust recognized as an Overall Leader and top Product Leader among 36 evaluated vendors. Access the Report

  • Home
  • Resources
  • Podcast
  • Ep. 49 - The Midnight Blizzard Breach on Microsoft and Other Identity Attacks // Marc Maiffret current page
Link copied

Ep. 49 - The Midnight Blizzard Breach on Microsoft and Other Identity Attacks // Marc Maiffret

Marc Maiffret

Listen on your favorite platform:

Spotify Apple Podcasts Youtube Pocket Casts Castro

About This Episode

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

Microsoft is one of the world's largest and most security-focused companies. Yet in late 2022, a sophisticated threat actor known as Midnight Blizzard breached their systems in Azure through a forgotten test account. Join James Maude and Marc Maiffret together as they dive into the technical details of the Blizzard attack, how machine identities and misconfigured OAuth apps provided the foothold, and the lessons learned about protecting corporate cloud environment. James & Marc also discuss actionable ways to reduce risk, the limitations of relying only on detection, and why unified visibility over all identities is key for a proactive defense.

Share this episode
Open in Player
Spotify Apple Podcasts Youtube Pocket Casts Castro
Podcast Play Button An icon representing a play button for a podcast player.
Share this Podcast
  • Link
Signup for Podcast notifications
Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

Latest Episodes

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied
1600279708 Robert Siciliano Headshot
Podcast default
Ep. 102 - Lions, Gazelles, and Pig Butchering // Robert Siciliano
Robert Siciliano
May 22, 2026
01:02:00
Jeffrey Wheatman
Podcast default
Ep. 101 – Cyber Security and the Art of Story Telling // Jeffrey Wheatman
Jeffrey Wheatman
May 08, 2026
00:57:41
James Maude Headshot 2024 Marc Maiffret1
100th episode square website
Ep. 100 - 100th Episode Celebration!!
James Maude | Marc Maiffret
Apr 17, 2026
01:08:58
Rob black headshot
Podcast default
Ep. 99 – Breaches, Births and Battling BS // Rob Black
Rob Black
Apr 03, 2026
00:51:55
Dahvid Schloss square
Podcast default
Ep. 98 – From Special Ops to Mob Boss // Dahvid Schloss
Dahvid Schloss
Mar 20, 2026
00:58:59

Related to Cybersecurity

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied
John fokker headshot
Ep. 35 - Hunting Down the REvil Ransomware Gang // John Fokker
Aug 25, 2023
00:57:39
370X370 John Strand
Ep. 10 - Breaking Down the Department of the Interior // John Strand
Aug 26, 2022
00:55:17
Grugq
Ep. 47 - The Coinbase Caper and Qatar News Agency Hack // The Grugq
Jan 26, 2024
01:06:17
Cris Thomas
Ep. 30 - Space Rogue and the L0pht Legacy // Cris Thomas
Jun 16, 2023
00:51:31

Keep up with BeyondTrust

Customer Support Get Started
  • LinkedIn
  • X
  • Facebook
  • Instagram
  • Add BeyondTrust as a preferred source on Google
  • Privacy
  • Security
  • Manage Cookies
  • Do Not Sell My Data
  • WEEE Compliance

Copyright © 2003 — 2026 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.

Prefers reduced motion setting detected. Animations will now be reduced as a result.
MS Vulns Report 2026 orange background 1

New: 2026 Microsoft Vulnerabilities Report

Access the report for expert analysis of Microsoft's vulnerability and security landscape, breaking down key trends, security shifts, emerging risks—and what it all means for you.

Get the Report

New: 2026 Microsoft Vulnerabilities Report: Access the report for expert analysis of Microsoft's vulnerability and security landscape, breaking down key trends, security shifts, emerging risks—and what it all means for you.

Get the Report