Microsoft’s Azure cloud platform contains a severe security flaw that could allow malware execution, according to researchers from Vectra. The vulnerability exists in Azure Logs, ironically used for identifying malicious activity. Users can inject malicious data into logs, tricking applications into executing malware. Alternatively, CSV Injection could also introduce malware. The vulnerability can be executed unauthenticated, meaning attackers don’t need a cloud account. Fully patched Excel instances are reportedly immune to this issue.
Australian AI healthcare firm StrongRoom AI has partnered with CyberQ Group to launch StrongShield, a cybersecurity solution designed to defend pharmacies and healthcare providers against