A vulnerability in Microsoft’s database service Cosmos DB has potentially put at risk thousands of Azure customers, according to a security firm. Microsoft sent an email to its cloud computing customers, stating that it had been made aware of vulnerability on Aug. 12 and took steps to mitigate it. The vulnerability, discovered two weeks ago, enabled researchers to gain unrestricted access to the accounts and databases of several thousand Microsoft Azure customers. “Exploiting it was trivial and required no other credentials,” they say. Microsoft responded: “We fixed this issue immediately to keep our customers safe and protected””]
Source: https://www.cuinfosecurity.com/azure-database-service-flaw-could-affect-thousands-firms-a-17392