Microsoft has fixed a vulnerability in its AI-enabled Azure Health Bot that could have allowed attackers to access cross-tenant resources. The elevation of privilege vulnerability was discovered by Tenable researchers in June and patched by July. During routine investigations into data connections, the researchers were able to access an internal Microsoft subscription ID, potentially making other resources accessible.
‘Internal business directory’ accessed during cyber incident: NB Liquor – country94.ca
During a cyber incident, NB Liquor’s internal business directory was accessed by unauthorized individuals. The incident was confirmed by the company, stating that sensitive employee
