“We fixed this issue immediately to keep our customers safe,” Microsoft told Reuters.

Microsoft sent an email on August 26, 2021 in which thousands of customers using its cloud computing services are warned that intruders may be able to read, modify or even delete some of their databases.

Microsoft sent an email on August 26, 2021, which warned thousands of customers using its cloud computing services that intruders could read, modify or even delete some of their databases, according to Microsoft, a copy of the document and a cybersecurity researcher.

The vulnerability affects Microsoft Azure’s flagship database, Cosmos DB. A research team from security firm Wiz found it could access the keys that control access to the databases of thousands of companies. Wiz CTO Ami Luttwak is a former CTO of Microsoft Cloud Security Group. Microsoft was unable to change these keys itself, so the company emailed customers asking them to create new ones.

According to an email sent to Wiz, Microsoft agreed to give Wiz $ 40,000 for finding and reporting the error. . “We resolved this issue immediately to ensure the safety and security of our customers,” Microsoft told Reuters. In email to its customers, Microsoft states that the vulnerability has been patched and that there is no indication that the vulnerability has been exploited. “We have no evidence that an outside unit of the researcher (Wiz) had access to the read-write key,” he said in the copy of the email seen by Reuters.

Your address will be used to send the newsletters that interest you. In accordance with the Data Protection Act of January 6, 1978, updated by the law of August 6, 2004, you have the right to access, rectify and oppose data concerning you by writing to the address Subscriptions @ scienceetavenir.fr. to write

Your address will be used to send the newsletters that interest you. In accordance with the Data Protection Act of January 6, 1978, updated by the law of August 6, 2004, you have the right to access, rectify and oppose data concerning you by writing to the address Subscriptions @ scienceetavenir.fr. to write

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Ref: https://news.ebene-magazine.com