Bleeping Computer

Microsoft extends security for Azure Storage file shares, data lakes

Microsoft today announced that Advanced Threat Protection (ATP) for Azure Storage now also allows customers to protect data stored in Azure Files file shares and Azure Data Lake Storage Gen2 API data ...

OAuth Device Code Phishing: Azure vs. Google Compared

Azure can yield very powerful tokens while Google limits scopes, reducing the blast radius. Register for Huntress Labs' Live Hack to see live Microsoft 365 attack demos, explore defensive tactics, and ...
CSOonline

Azure API Management flaws highlight server-side request forgery risks in API development

Microsoft recently patched three vulnerabilities in its Azure API Management service, two of which enabled server-side request forgery (SSRF) attacks that could have allowed hackers to access internal ...
CRN

Four New Microsoft Azure Vulnerabilities Found By Orca Security

Microsoft has fixed all of the issues, which could have put customer data at risk if attackers had found the vulnerabilities first. Vulnerabilities in four Microsoft Azure services, which posed the ...
CRN

8 Biggest Microsoft Azure Security Issues You Need To Know About

From focusing more heavily on applications than infrastructure to dealing more frequently with customers with lots of private data, here are eight of the biggest Microsoft Azure security issues seen ...