Microsoft has corrected a couple of critical flaws in its Azure Database for PostgreSQL Flexible Server that allowed attackers to get unauthorised cross-account access to databases stored in the cloud.
Threat actors could have used the flaws to bypass authentication mechanisms and gain full access to customer data across multiple databases in a region without leaving any trace of their presence, researchers from cloud security vendor Wiz Research recently discovered. Read More…