A serious security vulnerability has been discovered in Microsoft Entra ID’s newly introduced Agent Identity Platform, raising concerns about privilege escalation risks in enterprise environments. The flaw allowed users with the Agent ID Administrator role to take control of arbitrary service principals across an organization’s tenant. Although the role was intended to manage AI agent […] The post Hackers Can Abuse Agent ID Administrator Role to Hijack Service Principals appeared first on Cyber Security News.