all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers

Add to bookmarks
June 10, 2024, 11:20 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Microsoft is warning about the potential abuse of Azure Service Tags by malicious actors to forge requests from a trusted service and get around firewall rules, thereby allowing them to gain unauthorized access to cloud resources.
"This case does highlight an inherent risk in using service tags as a single mechanism for vetting incoming network traffic," the Microsoft Security Response Center (

abuse access azure azure service case cloud cloud resources firewall firewall rules forge hackers inherent risk malicious malicious actors microsoft requests resources risk rules service tags unauthorized unauthorized access using vulnerability warning

Visit resource

More from thehackernews.com / The Hacker News

New MOVEit Transfer Vulnerability Under Active Exploitation - Patch ASAP! 4 hours ago | thehackernews.com
authentication authentication bypass bug bypass +21
Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware 9 hours ago | thehackernews.com
attacks china chinese cluster +20
Practical Guidance For Securing Your Software Supply Chain 9 hours ago | thehackernews.com
attackers attacks guidance integrity +15
Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping 9 hours ago | thehackernews.com
access actor apple apple patches +15
New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites 10 hours ago | thehackernews.com
caesar called card cipher +23
New Medusa Android Trojan Targets Banking Users Across 7 Countries 11 hours ago | thehackernews.com
android android banking trojan android trojan banking +20
Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack 15 hours ago | thehackernews.com
ads attack block chinese +16
New Attack Technique Exploits Microsoft Management Console Files 1 day, 8 hours ago | thehackernews.com
artifact attack code code execution +20
How to Cut Costs with a Browser Security Platform 1 day, 9 hours ago | thehackernews.com
browser browser extensions browser security data +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Account Executive - Secureworks Direct Sales - US Remote Philadelphia

@ Dell Technologies | Remote - Pennsylvania, United States
View on infosec-jobs.com

SATCOM Technician - Shariki, Japan - Secret Clearance (Onsite)

@ RTX | RVA99: RTN Remote, Virginia
View on infosec-jobs.com

Senior Test Engineer

@ Commonwealth Bank | Bengaluru - Manyata Tech Park Road
View on infosec-jobs.com

Lead Developer - Pipeline & Algorithms

@ Arctic Wolf | Waterloo
View on infosec-jobs.com