all InfoSec news
Managed Identity Attack Paths, Part 1: Automation Accounts
Security Boulevard securityboulevard.com
Intro and Prior Work
In this three part blog series we will explore attack paths that emerge out of Managed Identity assignments in three Azure services: Automation Accounts, Logic Apps, and Function Apps. But first, what exactly are Managed Identities?
I think it’s best to think about Managed Identities in the context of the problem they have (in my opinion, very effectively) solved: accidental credential exposure. Before Managed Identities, admins needed to either store or retrieve credentials in their scripts …
accounts attack automation azure bloodhound bloodhound-enterprise cloud computing cloud security cybersecurity identity managed