By: David Dean

Today there was a new article titled "Worst cloud vulnerability you can imagine discovered in Microsoft Azure."

 

https://arstechnica.com/information-technology/2021/08/worst-cloud-vulnerability-you-can-imagine-discovered-in-microsoft-azure/

 

"Cloud security vendor Wiz announced yesterday that it found a vulnerability in Microsoft Azure's managed database service, Cosmos DB, that granted read/write access for every database on the service to any attacker who found and exploited the bug."

 

It is not a matter of "if" but just a matter of "when." This exploit was discovered by a white hat security researcher.  Each time an exploit like this is discovered it is basically a roll of the dice.

 

News like this further validates ISPApp's design choices of not using a shared server or shared database model. We can't perfectly protect ourselves from all avenues of attack but we can greatly reduce our exposure by making good design choices. With good design choices ISPApp is rolling the dice less often.

-David Dean

August 28th, 2021