Microsoft Patches Serious Azure Cloud Security Flaws


Three flaws in the platform’s API Management Service might provide attackers access to sensitive information, launch additional assaults, or even take over developer portals. Researchers discovered three vulnerabilities in Microsoft’s Azure cloud platform, which if exploited, might have given attackers access to critical data on a targeted service, denied them access to the server, or allowed them to scan the internal network to launch additional assaults.

In a blog post published on May 4, researchers from the Ermetic Research Team disclosed that they had found vulnerabilities in the Azure API Management Service, which enables businesses to establish, administer, secure, and monitor APIs across all of their environments.

Read More…