Security News

Week in review: 18 free Microsoft Azure cybersecurity resources, K8 vulnerability allows RCE
2023-09-24 08:00

An inside look at NetSPI's impressive Breach and Attack Simulation platformIn this Help Net Security interview, Scott Sutherland, VP of Research at NetSPI, delves into the intricacies of their Breach and Attack Simulation platform and discusses how it offers unique features - from customizable procedures to advanced plays - that help organizations maximize their ROI. How companies can take control of their cybersecurityIn this Help Net Security interview, Baya Lonqueux, CEO at Reciproc-IT, discusses the evolving cybersecurity landscape and the essential skillsets needed for teams working in this field. Critical Trend Micro vulnerability exploited in the wildTrend Micro has fixed a critical zero-day vulnerability in several of its endpoint security products for enterprises that has been spotted being exploited in the wild.

18 free Microsoft Azure cybersecurity resources you should check out
2023-09-20 04:30

Here's a list of free Azure cybersecurity resources that Microsoft offers to anyone interested in learning. Prepare for cloud security by using the Microsoft Cloud Adoption Framework for Azure.

White Hat Hackers Discover Microsoft Leak of 38TB of Internal Data Via Azure Storage
2023-09-19 06:57

Microsoft has patched a vulnerability that exposed 38TB of private data from its AI research division. The repository held 38TB of private data, secrets, private keys, passwords and the open-source AI training data.

Microsoft leaks 38TB of private data via unsecured Azure storage
2023-09-18 15:18

The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data while contributing open-source AI learning models to a public GitHub repository. Microsoft linked the data exposure to using an excessively permissive Shared Access Signature token.

BlackCat ransomware hits Azure Storage with Sphynx encryptor
2023-09-16 14:11

The BlackCat ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets' Azure cloud storage. In total, the ransomware operators could encrypt 39 Azure Storage accounts successfully.

Researchers Detail 8 Vulnerabilities in Azure HDInsight Analytics Service
2023-09-13 13:31

More details have emerged about a set of now-patched cross-site scripting flaws in the Microsoft Azure HDInsight open-source analytics service that could be weaponized by a threat actor to carry out malicious activities. "The identified vulnerabilities consisted of six stored XSS and two reflected XSS vulnerabilities, each of which could be exploited to perform unauthorized actions, varying from data access to session hijacking and delivering malicious payloads," Orca security researcher Lidor Ben Shitrit said in a report shared with The Hacker News.

Ongoing Duo outage causes Azure Auth authentication errors
2023-08-21 16:26

Cisco-owned multi-factor authentication provider Duo Security is investigating an ongoing outage that has been causing authentication failures and errors starting three hours ago. The outage also led to Core Authentication Service issues across multiple Duo servers, triggering Azure Auth authentication errors for Azure Conditional Access integrations in a systemwide outage.

Microsoft Azure AI Adds GPT-4 and New Virtual Machines
2023-08-08 20:52

Microsoft is working on creating guidelines for red teams making sure generative AI is secure and responsible.

New Microsoft Azure AD CTS feature can be abused for lateral movement
2023-08-03 22:55

Microsoft's new Azure Active Directory Cross-Tenant Synchronization feature, introduced in June 2023, has created a new potential attack surface that might allow threat actors to more easily spread laterally to other Azure tenants. Microsoft tenants are client organizations or sub-organizations in Azure Active Directory that are configured with their own policies, users, and settings.

Stolen Azure AD key offered widespread access to Microsoft cloud services
2023-07-21 21:08

The Microsoft private encryption key stolen by Storm-0558 Chinese hackers provided them with access far beyond the Exchange Online and Outlook.com accounts that Redmond said were compromised, according to Wiz security researchers. While Microsoft said that only Exchange Online and Outlook were impacted, Wiz says the threat actors could use the compromised Azure AD private key to impersonate any account within any impacted customer or cloud-based Microsoft application.