Microsoft’s Azure cloud platform carries a high-severity security vulnerability that could result in victim organizations unknowingly executing malware on their endpoints, experts have warned.
Researchers from Vectra outlined the issue in a recent blog post, noting that the vulnerability lies in Azure Logs, a tool that – ironically enough – is used to track malicious activity in a cloud environment (among other things). While logs sound like something an Azure admin would only read – and not edit – there are some pieces of data the user has control over, such as user IDs, email addresses, message subjects, and similar.