Microsoft has recently fixed a bug on the Azure Automation service, granting attackers unpermitted access to customers' sensitive information. Further details have been disclosed by the Redmond giant in its latest issue report.
Microsoft Discloses AutoWarp Bug on Azure
Microsoft disclosed some information about the AutoWarp Bug that recently hit the Azure Automation service.
Earlier this week, Orca Security expert Yanir Tsarimi posted a report about a cross-account vulnerability in the Microsoft Azure Automation service.
The cybersecurity researcher said that this attack could target the accounts of the customers and gain access to their data and other information.
In addition, this security threat could cause a risk to various establishments. According to an article from The Hacker News, the affected entities for this incident include four financial institutions, a telecommunications firm, and two automakers, to name a few.
This service features seamless cloud management paired with "process" automation regarding Azure Automation.
Aside from saving time and costs, it can also deliver more reliable services by emphasizing business concerning operational tasks.
Related Article: Microsoft Discusses DDoS Protection Through Azure During 3.47Tbps Disruption | Largest Attack in the History
AutoWarp Bug Hits Azure Automation Service
According to Bleeping Computer, Tsarimi spotted the so-called AutoWarp vulnerability. This threat can execute stealing the Managed Identities authentication tokens from the Azure customers.
"Someone with malicious intentions could've continuously grabbed tokens, and with each token, widen the attack to more Azure customers," Tsarimi said.
For the part of Microsoft, some accounts which rely on the Automation Hybrid worker for access might not be affected by the Azure bug.
According to the tech giant, the said vulnerability was addressed last December 10, 2021. The company managed to prevent further access to auth tokens with the exemption of those legitimate ones.
The report also added no evidence for the misuse of Managed Identities tokens. There are also no signs of exploitation involving the AutoWarp bug.
Having said that, Microsoft still recommends that all Azure Automation service customers should apply all the best practices through this link.
Azure App Service Flaw
The announcement came after the fix for the Amazon Web Services (AWS) vulnerabilities. The two threats, which are identified as BreakingFormation and SuperGlue, have been used by the attackers to leak confidential information from the users.
Aside from the Azure bug, Microsoft also uncovered another flaw in the Azure App Service. The company later unearthed that some source codes were exposed. They were written in several programming languages, such as Java and Python.
Back in August 2021, Tech Times reported that the Azure Cosmos DB Database vulnerability might have allowed the attackers to expose 3,300 firms during the data breach.
For our most recent report, a security threat of high severity was seen once again in the Linux system. The "Dirty Pipe" flaw was discovered to be orchestrating some attacks by overwriting the data for read-only files.
This article is owned by Tech Times
Written by Joseph Henry
