EmojiDeploy Attack Chain Targets Misconfigured Azure Service
Dark Reading coverage detailing Ermetic's recent discovery
Dark Reading published an article detailing Ermetic's recent discovery of multiple misconfigurations in a service that underpins many Azure features could have allowed an attacker to remotely compromise a cloud user's system.
"Azure and cloud service consumers — enterprises — must be familiar with each service and its internals, and not trust [that the] default settings provided by cloud providers are always secure," says Igal Gofman, head of research for Ermetic. "Even though cloud providers spend millions of dollars on securing their cloud infrastructure, misconfigurations and security bugs will happen."