![AutoWarp bug leads to Automation headaches. [Research Saturday]](https://imgv2-2-f.scribdassets.com/img/audiobook/575148796/198x198/f0e9858aa8/1679683404?v=1)
40 min listen
AutoWarp bug leads to Automation headaches. [Research Saturday]
FromCyberWire Daily
ratings:
Length:
18 minutes
Released:
May 21, 2022
Format:
Podcast episode
Description
Yanir Tsarimi from Orca Security, joins Dave to discuss how researchers have discovered a critical Azure Automation service vulnerability called AutoWarp. The security flaw was discovered this past March causing Yanir to leap into action announcing the issue to Microsoft who helped to swiftly resolve the cross-account vulnerability.
The research shows how this serious flaw would allow attackers unauthorized access to other customer accounts and potentially full control over resources and data belonging to those accounts, as well as put multiple Fortune 500 companies and billions of dollars at risk. The research shares the crucial time line that the vulnerability was discovered as well as Microsofts response to the vulnerability.
The research can be found here:
AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service
The research shows how this serious flaw would allow attackers unauthorized access to other customer accounts and potentially full control over resources and data belonging to those accounts, as well as put multiple Fortune 500 companies and billions of dollars at risk. The research shares the crucial time line that the vulnerability was discovered as well as Microsofts response to the vulnerability.
The research can be found here:
AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service
Released:
May 21, 2022
Format:
Podcast episode
More Episodes from CyberWire Daily
Ransomware attack turns legal attack. by CyberWire Daily