For example, during the 2023 MGM assault, the attacker straight accessed an account with Super Admin permissions in Okta, which they coupled with an inbound federation attack to impersonate any user while in the tenant, get Azure admin privileges, and authenticate for the Azure-hosted VMware ecosystem the place they deployed ransomware. Optimizing