Databreach Today -
Application Security , Cloud Security , Incident & Breach Response
Users Able to Access Other Users’ Information in ACI Service Mihir Bagwe • September 10, 2021 Azurescape attacks start from a container escape technique. (Image: Microsoft)
Microsoft has disclosed details of a vulnerability that researchers at Palo Alto Networks have named “Azurescape” because the attacks start from a container escape technique. The flaw affects Microsoft’s Azure Container Instances service and “could potentially allow a user to access other customers’ information in the ACI service,” Microsoft says.
See Also: Mega Breaches: Security Best Practices & Log Management
Microsoft adds that its initial investigation found no instance of unauthorized access to customer data by exploiting this vulnerability. It says that potential customers who share the same clusters as the researchers who reported the vulnerability have been notified through the Service Health Notifications in