Yanir Tsarimi from Orca Security, joins Dave to discuss how researchers have discovered a critical Azure Automation service vulnerability called AutoWarp. The security flaw was discovered this past March causing Yanir to leap into action announcing the issue to Microsoft who helped to swiftly resolve the cross-account vulnerability.
The research shows how this serious flaw would allow attackers unauthorized access to other customer accounts and potentially full control over resources and data belonging to those accounts, as well as put multiple Fortune 500 companies and billions of dollars at risk. The research shares the crucial time line that the vulnerability was discovered as well as Microsofts response to the vulnerability.
The research can be found here:
AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service
Learn more about your ad choices. Visit megaphone.fm/adchoices
Podden och tillhörande omslagsbild på den här sidan tillhör N2K Networks. Innehållet i podden är skapat av N2K Networks och inte av, eller tillsammans med, Poddtoppen.
