Hackers Abusing AWS & Microsoft Azure in large-scale to Launch Cyber Attacks
Silent Push, a cybersecurity research firm, has unveiled a concerning trend they term "infrastructure laundering," where threat actors exploit mainstream cloud providers such as...
Microsoft Azure AD Hit by AiTM Attack Exploiting OAuth 2.0 Code Flow
In a recent blog post, security researcher Rik van Duijn shared an innovative take on phishing techniques targeting Microsoft Entra ID (formerly Azure Active...
Azure Data Factory & Airflow Flaw Allows Attackers Write Access
Microsoft's Azure Data Factory integration with Apache Airflow has multiple security vulnerabilities, where attackers can exploit misconfigurations in Kubernetes RBAC and secret handling for...
Ransomware Gangs Exploit Azure Storage Explorer to Steal Sensitive Data
Recent investigations have revealed that ransomware groups like BianLian and Rhysida are using Azure Storage Explorer to steal sensitive data, whch originally designed for...
Major Azure Kubernetes Flaw Allows Hackers to Elevate Privileges
A vulnerability in Microsoft Azure Kubernetes Services allowed attackers with pod execution privileges to escalate privileges and access cluster service credentials. It enabled unauthorized access...
