Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
SystemDetecting a vulnerability that makes 3,000 companies using Microsoft Azure vulnerable to hackers reading data over the past 2 years
Using Microsoft Azure can help companies better secure their data. However, a newly discovered vulnerability shows the opposite result.
Microsoft has just been forced to notify more than 3,000 organizations and businesses, including giants like ExxonMobil, Walgreens, Coca Cola, Symantec, Zeiss. about potential security risks.
Specifically, the Azure platform that the above businesses are using has a vulnerability that allows any hacker access to read, edit, and delete data stored on Azure Cosmos DB database for more than 2 years. past 2 years.
This vulnerability was discovered by security company Wiz and named "ChaosDB". It is related to a series of configuration errors in the display feature of Jupiter Notebook, which Microsoft added to Cosmos DB in 2019. Jupiter Notebook is enabled by default in all installations of Cosmos DB.
Wiz reported the issue to Microsoft on August 12. By August 14, Microsoft had found a fix. Up to now, according to Microsoft, there is no sign of this vulnerability being exploited by hackers.
After discovering the problem, Wiz advised all companies using Cosmos DB to regenerate the access key and take other security measures. Businesses should double-check Cosmos DB security measures even if your business doesn't receive a warning from Microsoft.
Microsoft also rewarded Wiz $40,000 for reporting the vulnerability to them.
- Windows Azure will change its name to Microsoft Azure
- Discovering more vulnerabilities makes Bluetooth devices vulnerable to malicious attacks
- How Being Vulnerable Leads to a Healthy and Fulfilling Relationship
- How to use the reading tool in Microsoft Edge
- Microsoft releases updates for SQL Server 2017 and Azure data services
- The new Microsoft 365 login pages are fake
- How to avoid scams using fake phone numbers in AI Overviews
- Brave Browser + ProtonVPN + Bitwarden: The best security combo for desktop
- How to recover a forgotten Excel password using Passper
- How to delete or hide complex passwords on Windows Server 2016
- Recover Windows 7 password, restore Win 7 Pro, Ultimate password.
- The quickest way to create, change, and delete Windows 8 and 8.1 passwords.
- Instructions for installing and using Perfect Keylogger
- What to do if you forget your Excel file password?
- How to access your computer when you forget your Windows 10, 8, or 7 password.
- How to recover the Windows Admin login password
-
Ways to install Microsoft Excel on Linux - How to fix Office activation error 0xc004c060
- How to fix the Microsoft Teams shortcut not working on the computer
- Do not rush to update Patch Tuesday for November 2021 because it causes printer errors on Windows 10 again
- How to report Windows 11 errors, suggest Windows 11 features for Insider Preview users
- How to create exams on Microsoft Teams
Ways to install Microsoft Excel on Linux 
How to fix Office activation error 0xc004c060 
How to fix the Microsoft Teams shortcut not working on the computer 
Do not rush to update Patch Tuesday for November 2021 because it causes printer errors on Windows 10 again 
How to report Windows 11 errors, suggest Windows 11 features for Insider Preview users 
How to create exams on Microsoft Teams 
Windows XP
Windows Server 2012
Windows 8
Windows 7
Windows 10
Wifi tips
Virus Removal - Spyware
Speed up the computer
Server
Security solution
Mail Server
LAN - WAN
Ghost - Install Win
Fix computer error
Configure Router Switch
Computer wallpaper
Computer security
Windows 11
Mac OS X
Hardware
Game