Security News

Microsoft warns Azure Virtual Desktop users of black screen issues

2024-11-01 23:20

Microsoft warned customers they might experience up to 30 minutes of black screens when logging into Azure Virtual Desktop (AVD) after installing the KB5040525 Windows 10 July 2024 preview update. [...]

#azure #desktop #microsoft #virtual

AWS, Azure auth keys found in Android and iOS apps used by millions

2024-10-22 20:19

Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing...

#android #AWS #azure #IOS

Microsoft creates fake Azure tenants to pull phishers into honeypots

2024-10-19 14:32

Microsoft is using deceptive tactics against phishing actors by spawning realistic-looking honeypot tenants with access to Azure and lure cybercriminals in to collect intelligence about them. [...]

#azure #honeypot #microsoft #phisher

Ransomware gangs now abuse Microsoft Azure tool for data theft

2024-09-17 16:14

Ransomware gangs like BianLian and Rhysida increasingly use Microsoft's Azure Storage Explorer and AzCopy to steal data from breached networks and store it in Azure Blob storage. [...]

#azure #microsoft #ransomware

Researchers Uncover TLS Bootstrap Attack on Azure Kubernetes Clusters

2024-08-20 09:36

Cybersecurity researchers have disclosed a security flaw impacting Microsoft Azure Kubernetes Services that, if successfully exploited, could allow an attacker to escalate their privileges and...

#attack #azure #kubernetes #researcher #TLS

Mandatory MFA for Azure sign-ins is coming

2024-08-19 09:23

Microsoft is making multi-factor authentication - "One of the most effective security measures available" - mandatory for all Azure sign-ins. October 2024: MFA will be required to sign-in to Azure portal, Microsoft Entra admin center, and Intune admin center Early 2025: MFA required for signing in for Azure Command Line Interface, Azure PowerShell, Azure mobile app and Infrastructure as Code tools.

#azure #MFA

Azure domains and Google abused to spread disinformation and malware

2024-08-17 13:00

A clever disinformation campaign engages several Microsoft Azure and OVH cloud subdomains as well as Google search to promote malware and spam sites. [...]

#azure #google #malware

Researchers Uncover Vulnerabilities in AI-Powered Azure Health Bot Service

2024-08-13 13:00

Cybersecurity researchers have discovered two security flaws in Microsoft's Azure Health Bot Service that, if exploited, could permit a malicious actor to achieve lateral movement within customer environments and access sensitive patient data. The critical issues, now patched by Microsoft, could have allowed access to cross-tenant resources within the service, Tenable said in a new report shared with The Hacker News.

#AI #azure #BOT #researcher #vulnerabilities

Microsoft Azure outage takes down services across North America

2024-08-05 21:03

Microsoft has mitigated an Azure outage that lasted more than two hours and took down multiple services for customers across North and Latin America. [...]

#america #azure #microsoft #outage

Microsoft Confirms Global Azure Outage Caused by DDoS Attack

2024-08-01 16:58

The Azure outage had global reach, impacting a subset of customers attempting to connect to Azure App Services, Application Insights, Azure IoT Central, Azure Log Search Alerts, Azure Policy, the Azure portal itself, and a subset of Microsoft 365 and Microsoft Purview services. Many different organisations made statements on Tuesday, notifying users that their services were disrupted as a result of the Azure DDoS attack.

#attack #azure #ddos #microsoft #outage

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News