It's been a rough week for Microsoft users who have first- and third-party apps that rely on Azure Active Directory for authentication. Microsoft has published a root-cause analysis of its issues.

Secureworks researchers found what they say is a serious vulnerability in an Azure Active Directory authentication method, but Microsoft says it should not pose a serious risk to users.

Microsoft is extending Azure Active Directory with two new authentication services for developers writing apps and services. AD B2C and AD B2B are in public preview now.

Hybrid cloud identity and access management services add complexity and opportunity for attackers to network authentication processes, as recently demonstrated for Azure AD.

Thales’s new tokens are designed to protect Microsoft Azure Active Directory (Azure AD) users against account compromise and provide stronger security for access to cloud and web applications.