Microsoft’s failure to patch a known vulnerability could have enabled malicious users to access data in other Azure containers.
Microsoft has contacted some users of its Azure cloud computing platform about a flaw that could have been exploited by hackers to access their data. In a blog post, the Microsoft Security Response Center (MSRC) explains that the vulnerability was discovered in Azure Container Instances (ACI), and could be abused by malicious users to access other customers’ information. In the post, MSRC repeatedly claims that it found no evidence that attackers had abused the technique, and it had only notified those customers whose accounts were accessed by the Palo Alto cybersecurity researchers who reported the flaw.
