For example, from the 2023 MGM attack, the attacker right accessed an account with Tremendous Admin permissions in Okta, which they combined with an inbound federation assault to impersonate any person inside the tenant, get Azure admin privileges, and authenticate for the Azure-hosted VMware natural environment the place they deployed ransomware.�