For example, in the 2023 MGM assault, the attacker instantly accessed an account with Tremendous Admin permissions in Okta, which they combined with an inbound federation assault to impersonate any consumer while in the tenant, get Azure admin privileges, and authenticate to the Azure-hosted VMware natural environment in which they deployed ransomw