Security News

Microsoft on Tuesday shared the results of its three-month-long Azure Sphere Security Research Challenge and the company says it has paid out more than $374,000 to participants. The Azure Sphere Security Research Challenge, announced in May, invited security researchers to find vulnerabilities in Azure Sphere, Microsoft's IoT security solution, which the tech giant designed to provide end-to-end security across hardware, operating system and the cloud.

Microsoft awarded over $370,000 in bounties to security researchers for 16 bounty eligible reports of vulnerabilities submitted through the Azure Sphere Security Research Challenge IoT-focused research program. Azure Sphere Security Research Challenge is a 3-month expansion to the Azure Security Lab bounty program Microsoft announced last year at Black Hat 2019.

Microsoft this week announced the public preview of support for confidential computing nodes in Azure Kubernetes Service. One of the big tech companies to have affirmed commitment to computing confidentiality, Microsoft made Azure Confidential Computing generally available earlier this year, and also expanded the availability of secure VMs. The availability of confidential containers on AKS is yet another step Microsoft is taking toward moving computing from 'in the clear' to 'confidential'.

This means that Azure customers will be able to implement Datadog as a monitoring solution for their cloud workloads through new streamlined workflows that cover everything from procurement to configuration. The improved onboarding experience makes Datadog setup automatic, so new users can start monitoring the health and performance of their applications with Datadog quickly, whether they are based entirely in Azure or spread across hybrid or multi-cloud environments.

Unisys announced ClearPath MCP Software Series for Microsoft Azure the first availability of its flagship software environment in the public cloud. "ClearPath MCP Software Series for Azure affords organizations a more seamless transition to hybrid and multi-cloud environments, with reduced risk and time to achieve value from the cloud," said Vishal Gupta, senior vice president, Products and Platforms and Chief Technology Officer, Unisys.

Odix was nominated to MISA for integrating their recently launched product, FileWall, with Microsoft Azure Sentinel. FileWall is a security application for Microsoft 365 mailboxes and now includes reporting capabilities to Azure Sentinel.

Microsoft Reports Evolution of China-Linked Threat Actor GADOLINIUM. Microsoft this week announced that it recently removed 18 Azure Active Directory applications that were being abused by China-linked state-sponsored threat actor GADOLINIUM. Also known as APT40, TEMP.Periscope, TEMP.Jumper, Leviathan, BRONZE MOHAWK, and Kryptonite Panda, the adversary has been active since at least 2013, mainly operating in support of China's naval modernization efforts, through targeting various engineering and maritime entities, including a U.K.-based company. The threat actor was recently observed leveraging Azure cloud services and open source tools in attacks employing spear-phishing emails with malicious attachments.

An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate its attacks. Microsoft has suspended 18 Azure Active Directory applications that were being leveraged for command-and-control infrastructure by what it says is a Chinese nation-state actor.

Jumio announced that its AI-powered identity verification solutions are now available to Microsoft Azure Active Directory External Identities for B2C customers. Azure Active Directory B2C is a customer identity access management solution.

As a cornerstone of the strategy, SES signed a multi-year agreement with Microsoft to be an Azure Orbital partner as well as to accelerate and expand the use of Microsoft Azure across its operations and jointly develop cloud-based video and data connectivity managed services. As an Azure Orbital partner, SES will be co-locating and managing O3b mPOWER gateways with Microsoft Azure locations so its customers are always only "One-hop" away from their Azure cloud services anywhere in the world.