For example, inside the 2023 MGM attack, the attacker specifically accessed an account with Tremendous Admin permissions in Okta, which they combined with an inbound federation attack to impersonate any user while in the tenant, get Azure admin privileges, and authenticate on the Azure-hosted VMware atmosphere where they deployed ransomware. Searc