Microsoft paid Tenable a bug bounty for an Azure flaw it says needs no fix, just better documentation
A vulnerability — or just Azure working as intended, depending on who you ask — in Microsoft’s cloud potentially allows bad guys to bypass firewall rules and access other people’s private web resources. The issue, discovered by the research team at the Tenable vulnerability assessment group, originates from Service Tags, which are an Azure construct. … Read more