Office 365 / ADFS vulnerability

Companies are protecting Office 365 with ADFS or Conditional Access. This protection is done to ensure that users can access SharePoint Online and OneDrive for Business only from controlled areas. SharePoint Online and OneDrive for Business unfortunately are using very long living authentication cookies, which the users or malicious code can send to other machines like private machines. From there

Read more