Check Point discovers two major security flaws in Microsoft Azure
The first security flaw was discovered in Azure Stack and if exploited, it would enable a hacker to gain access to screenshots and other sensitive information from machines running Azure.
Azure stack is a cloud computing software solution that was developed by Microsoft to allow enterprises to deliver Azure services from their own data centers. The software giant created Azure Stack as a means of helping organizations embrace hybrid cloud computing on their own terms while still being able to address business and technical considerations.
Researchers at Check Point were able to take screenshots and collect sensitive information of Azure tenants and infrastructure machines by exploiting the flaw. However, in order for a hacker to take advantage of the flaw, they would first need to gain access to the Azure Stack Portal which would enable them to send unauthenticated HTTP requests.
continue reading at techradar.com