“Secret” Agent Exposes Azure Customers To Unauthorized Code Executions

Update September 18, 08:00AM EST — Microsoft updated its advisory and declared an auto-update for their PaaS service offerings that use vulnerable VM extensions by September 22, 2021. Microsoft also clarified which instances will still require manual patching, see details.

This out of the Wiz.io blog, researchers recently discovered a series of alarming vulnerabilities that highlight the supply chain risk of open source code, particularly for customers of cloud computing services.

From the looks of it, customers that set up Linux VMs (virtual machines) in their Azure cloud accounts unknowingly have the OMI agent installed automatically — when certain Azure services are enabled. Unless a patch is applied, attackers can easily exploit four vulnerabilities to escalate to root privileges and remotely execute malicious code.

For more information on this exploit please visit Wiz.io for more details.

--

--

--

A benevolent block producer crew based in Detroit, MI building value on blockchain networks. Planting new seeds of economic opportunity.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Russian hacker sells course and exploit to attack e-commerce stores for $5k USD

AttackerKB TryHackMe Walkthrough

{UPDATE} Logic Puzzle Hack Free Resources Generator

QPassport in One Minute

A Five Minute Overview of AWS Workspaces

Tester Guide: Evrynet “DEX2.0” Phase 1 Beta Test

InfoSecSherpa Newsletter — 11 June 2021

Truecaller Data Breach: Data for sale on Dark Web

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Detroit Ledger Technologies

Detroit Ledger Technologies

A benevolent block producer crew based in Detroit, MI building value on blockchain networks. Planting new seeds of economic opportunity.

More from Medium

Singular Instance for Multi-threaded Execution in Cloud Environment and Re-Entrant mechanism to…

How to secure an application on Cloud

We need to secure the application from attackers.

INTEGRATION OF LVM PARTITION WITH HADOOP CLUSTER

What is OpenShift and its industry Use Cases?