all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

BlueBleed

Add to bookmarks
Oct. 19, 2022, midnight |

The Open Cloud Vulnerability & Security Issue Database www.cloudvulndb.org

In September 22', SOCRadar discovered an insecure public Azure blob storage owned by Microsoft (olyympusv2.blob.core.windows[.]net). This blob storage was used for storing emails and other documents from interactions with their customers (such as contracts and purchase orders). In total, the blob storage contained 2.4TB of data with information concerning thousands of Microsoft customers across dozens of countries, dated between 2017 and August 22'. Following disclosure, Microsoft reconfigured it to be private. According to Microsoft, they found no indication customer accounts …

bluebleed

Visit resource

More from www.cloudvulndb.org / The Open Cloud Vulnerability & Security Issue Database

AWS Amplify IAM role publicly assumable exposure 4 days, 15 hours ago | www.cloudvulndb.org
account amplify aws cli +12
Azure Site Recovery privilege escalation 2 months ago | www.cloudvulndb.org
access access token account asr +19
Azure HDInsight privilege escalation and DoS vulnerabilities 2 months, 1 week ago | www.cloudvulndb.org
apache attacker azure dos +9
Azure Pipelines Agent poisoned pipeline execution 3 months, 4 weeks ago | www.cloudvulndb.org
actions agent azure azure pipelines +14
Amazon WorkSpaces Windows client credential logging 6 months, 1 week ago | www.cloudvulndb.org
access amazon attacker aws +15
Power Platform Custom Code information disclosure 8 months, 2 weeks ago | www.cloudvulndb.org
access access control azure code +16
Bad.Build 9 months ago | www.cloudvulndb.org
access account bad bad.build +18
Azure Front Door client-side desync 9 months, 3 weeks ago | www.cloudvulndb.org
attacker azure azure front door cdn +22
nOAuth 9 months, 4 weeks ago | www.cloudvulndb.org
accounts app application authentication +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands
View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India
View on infosec-jobs.com
View more jobs