Azure Cloud Configuration Review
ID: 8ded3dbb-14d4-5af9-a3e7-713e56314431
STIX ID: report--8ded3dbb-14d4-5af9-a3e7-713e56314431
Feed Name: HackerOne Blog
Threat Score
This report describes HackerOne’s Microsoft Azure testing methodologies and enumerates common Azure misconfigurations across Entra ID, RBAC, virtual networks, App Service, VMs, Blob Storage, Key Vault, Defender, and related services, providing mitigation best practices. It also includes a case study of an October 2022 Microsoft Blob Storage misconfiguration that left 2.4 TB of sensitive data publicly accessible (with no confirmed unauthorized access).
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.