Azure Archives

Cloud Security

Microsoft Azure Users Warned of Potential Shared Key Authorization Abuse

Microsoft Azure shared key authorization can be exploited to access business data and achieve remote code execution.

Ionut ArghireApril 11, 2023

Cloud Security

Microsoft Cloud Vulnerability Led to Bing Search Hijacking, Exposure of Office 365 Data

An Azure Active Directory (AAD) misconfiguration leading to Bing.com compromise earned Wiz researchers a $40,000 bug bounty reward.

Ionut ArghireMarch 30, 2023

Application Security

CSRF Vulnerability in Kudu SCM Allowed Code Execution in Azure Services

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Ionut ArghireJanuary 19, 2023

SECURITYWEEK NETWORK:

ICS:

SecurityWeek

All posts tagged "Azure"

Cloud Security

Microsoft Azure Users Warned of Potential Shared Key Authorization Abuse

Cloud Security

Microsoft Cloud Vulnerability Led to Bing Search Hijacking, Exposure of Office 365 Data

Application Security

CSRF Vulnerability in Kudu SCM Allowed Code Execution in Azure Services

Featured

Ransomware

Pharmaceutical Giant Eisai Takes Systems Offline Following Ransomware Attack

Cybercrime

BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack

Vulnerabilities

Google Patches Third Chrome Zero-Day of 2023

Data Breaches

Verizon 2023 DBIR: Human Error Involved in Many Breaches, Ransomware Cost Surges

Supply Chain Security

SBOMs – Software Supply Chain Security’s Future or Fantasy?

Cybercrime

Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations

Vulnerabilities

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations

Latest News

Application Security

In Other News: AI Regulation, Layoffs, US Aerospace Attacks, Post-Quantum Encryption

Cybersecurity Funding

Blackpoint Raises $190 Million to Help MSPs Combat Cyber Threats

Artificial Intelligence

Google Introduces SAIF, a Framework for Secure AI Development and Use

Cybercrime

‘Asylum Ambuscade’ Group Hit Thousands in Cybercrime, Espionage Campaigns

Ransomware

Evidence Suggests Ransomware Group Knew About MOVEit Zero-Day Since 2021

Ransomware

SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint

Cloud Security

Google Cloud Now Offering $1 Million Cryptomining Protection