News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Tag: Azure

Phishing campaign: Target Azure Cloud credentials
3 January 2025
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Unit 42 researchers have uncovered a phishing campaign targeting European companies, including those from Germany. The campaign aimed to steal Microsoft Azure cloud credentials and take over the victims' cloud infrastructure. The campaign's phishing attempts peaked in June 2024, created as fake forms using the HubSpot Free Form Builder service. Our telemetry data shows that the threat actor successfully targeted around 20.000 users across various European companies. Phishing campaign started as early as June 2024 Our investigation found that while the phishing campaign appears to have been launched in…

Read more

Microsoft closes vulnerability in Azure Health Bot Service
August 31, 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The critical vulnerability found in Microsoft's Azure Health Bot Service has now been closed. It enabled server-side request forgery (SSRF) and allowed access to the internal metadata service. The Tenable Research Team discovered several privilege escalation vulnerabilities in the Azure Health Bot Service using server-side request forgery (SSRF). These vulnerabilities allowed researchers to access the service's internal metadata service (IMDS) and then provide access tokens that can be used to manage cross-tenant resources. By exploiting the vulnerability, a threat actor could have accessed hundreds of Azure customers' resources...

Read more

BSI and Zero Day Initiative warn of critical Azure vulnerability  
June 10, 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The Zero Day Initiative (ZDI) collects and verifies reported vulnerabilities. There is now a critical vulnerability in Azure with the highest CVSS value of 10.0. The BSI is also warning about the vulnerability - but there still seems to be no patch for it. The details of the critical security vulnerability in Azure with the CVSS value of 10.0 are only briefly described: "This vulnerability allows remote attackers to bypass authentication with Microsoft Azure. No authentication is required to exploit this vulnerability." Azure at risk - no patch to be found A further explanation can be found...

Read more

Microsoft forgets its own passwords on freely accessible servers 
30 April 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Microsoft has fixed a major security error: despite an external warning, a large number of codes, scripts and configuration files with passwords, keys and login information for accessing services for the search engine Bing were lying on an unprotected server in Azure for weeks. As the technology portal TechCrunch reports, security researchers Can Yoleri, Murat Özfidan and Egemen Koçhisarlı from SOCRadar reported that they found internal information about Microsoft's Bing search engine on an open server in Azure. The specialists usually look for vulnerabilities that could be attacked. In this case there was no hurdle for immediate...

Read more

BaaS for Microsoft 365 and Azure
16 October 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Cirrus by Veeam for Microsoft 365 and Microsoft Azure provides a simple, flexible, reliable and powerful BaaS offering. It offers companies the opportunity to simplify the management and administration of their backup operations while leveraging the resiliency of Veeam technology. Veeam will launch a new, improved version of the BaaS offering in the first quarter of 2024, which will be available through Veeam Service Provider, the Microsoft Azure Marketplace and the Veeam Online Store. Cirrus by Veeam was acquired by CT4, which provides the service using the industry-leading Veeam data backup and ransomware recovery platform…

Read more

Microsoft Azure DevOps: New backup and recovery service 
August 23, 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Keepit already protects cloud data in software-as-a-service (SaaS) services with a blockchain-verified solution. The Azure DevOps service now complements the coverage of Microsoft's cloud services such as Office 365. DevOps is the umbrella term for practices that combine software development (Dev) and IT operations (Ops). They feature fast and continuous delivery, workflow automation, and fast feedback. The aim of the processes is to increase effectiveness and efficiency in software development in order to deliver products quickly and with high quality. Azure DevOps: New backup and recovery service Azure DevOps (ADO) is Microsoft's solution for implementing DevOps...

Read more

Native protection for VMs in Azure
August 12, 2023
| No comments
| PR News
Native protection for VMs in Azure - Image by Gerd Altmann from Pixabay

The new version Zerto 10 for Microsoft Azure is ideal for native protection for VMs in Azure. It brings an improved solution for disaster recovery and mobility, also supports multi-volume VMs and offers improved scale-out efficiency for more infrastructure flexibility. Zerto, a Hewlett Packard Enterprise company, introduces Zerto 10 for Microsoft Azure. The solution provides enhanced disaster recovery (DR) and data mobility capabilities to help organizations protect their Azure workloads from increasingly sophisticated threats. Core of the improvements in Zerto 10 for Microsoft…

Read more

Cloud Next Generation Firewall for Microsoft Azure
June 11, 2023
| No comments
| PR News
Cloud Next Generation Firewall for Microsoft Azure

The new cloud next-generation firewall for Microsoft Azure from Palo Alto Networks: With the help of AI and ML, known, unknown and zero-day threats can be stopped so that users can migrate their applications to Azure safely and quickly. Cloud NGFW for Azure offers a comprehensive security solution with features such as Advanced Threat Prevention, Advanced URL Filtering, WildFire and DNS Security. As an Azure-native ISV service from Palo Alto Networks, Cloud NGFW for Azure is quick and easy to source and deploy through the Azure portal. In addition, the service is fully managed by Palo Alto Networks,…

Read more

Cloud firewall with protection for Virtual WAN
June 1, 2023
| No comments
| PR News
Cloud firewall with protection for Virtual WAN

A global leader in cyber security solutions announces the general availability of its industry-leading next-generation cloud firewall, factory-integrated with Microsoft Azure Virtual WAN to provide customers with best-in-class security. The integration provides advanced threat protection and layered network security across public, private, and hybrid clouds. It enables companies to migrate to Azure with maximum operational efficiency. Network-as-a-Service “Microsoft Azure Virtual WAN is a Network-as-a-Service, which provides customers with a number of benefits because this model simplifies networking, security, and routing functions to deliver scalability, cost savings, and improved…

Read more

Bing & Office 365: Errors in Azure allow data theft
4 April 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Microsoft has fallen victim to its own Azure Active Directory - AAD configuration challenges. Due to the misconfiguration, experts were able to inject some Bing search results with malicious code, exposing Microsoft 365 users. The experts at Wiz Research found the configuration errors and exploited them for testing. Microsoft rewarded the experts with a BugBounty and fixed the errors immediately. What happened? The experts describe the incident: Manipulated Bing search results with malicious code "These applications allowed us to view and modify various types of sensitive Microsoft data. In one particular case, we were able to display search results on...

Read more

© 2025 MedPressIT Selinger
Cookie Settings