OMIGOD: a vulnerabilities within Azure VM Management Extensions

A couple of weeks ago a new case exploded around Azure virtual machines, and on-premises as well, and specifically those Linux with Open Management Infrastructures on board. In deep there are three Elevation of Privilege (EoP) vulnerabilities (CVE-2021-38645, CVE-2021-38649, CVE-2021-38648) and one unauthenticated Remote Code Execution (RCE) vulnerability (CVE-2021-38647). Open Management Infrastructure (OMI) is an open-source Web-Based Enterprise […]

Microsoft Azure Sentinel

Introducing Azure Sentinel

With cloud explosion, Microsoft was involved to introduce new solutions to achieve users’ requirements in order to be ready to switch-off on-premises solution moving to the cloud. This crazy run produced, in some cases, confusion from customers due overlap between products. However, despite the many releases made, one of the products that has always been […]