Microsoft Warns That Azure Cosmos Flaw Can Let Intruders Alter Main Databases
American takes credit for T-Mobile flaw & says the carrier is easy to hack, Palantir software flaw gave FBI employees unauthorized access, Cyber Partisans say they're behind Belarus regime hacks, more
Microsoft warned thousands of its cloud computing customers, including some of the world’s largest companies, that intruders could have the ability to read, change or even delete their main databases due to a vulnerability in its Azure’s flagship Cosmos database.
Microsoft paid a bug bounty of $40,000 to security company Wiz after the company discovered it could access keys that control access to databases held by thousands of companies. Because Microsoft can’t change those keys by itself, it emailed the customers telling them to create new ones. (Joseph Menn / Reuters)
Related: The Hacker News, TechNadu, Reddit - cybersecurity, IT Pro, Windows Central, SiliconANGLE, Asia One Digital, South China Morning Post, CyberNews, NDTV Gadgets360.com, iTnews - Security, The Register - Security, MSSP Alert, SecurityWeek
John Binns, a 21-year-old American who moved to Turkey a few years ago, has claimed credit for the significant breach of T-Mobile, which saw over 50 million of the carrier’s curr…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.