Security News > 2024 > June > Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers
2024-06-10 11:20
Microsoft is warning about the potential abuse of Azure Service Tags by malicious actors to forge requests from a trusted service and get around firewall rules, thereby allowing them to gain unauthorized access to cloud resources. "This case does highlight an inherent risk in using service tags as a single mechanism for vetting incoming network traffic," the Microsoft Security Response Center (
News URL
https://thehackernews.com/2024/06/azure-service-tags-vulnerability.html
Related news
- Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications (source)
- It's Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure (source)
- Microsoft to start enforcing Azure multi-factor authentication in July (source)
- Microsoft links North Korean hackers to new FakePenny ransomware (source)
- Microsoft Uncovers 'Moonstone Sleet' — New North Korean Hacker Group (source)
- Azure Service Tags tagged as security risk, Microsoft disagrees (source)
- Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn't need a fix, just better documentation (source)
- Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability (source)