Software supply chain blind spot “One of the biggest challenges in preventing is that our digital supply chain is not transparent. If you don’t know what’s hidden in the services and products you use every day, how can you manage the risk?” argue the researchers. The vulnerabilities affect Azure customers on Linux machines, which, according to some estimates, make up a sizable number of all Azure instances.
We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us. TechRadar needs you!
>> Click here to start the survey in a new window << The OMI agent is automatically deployed inside Linux virtual machines (VM) when users enable certain Azure services, the researchers point out.
The good news is that Microsoft has shipped fixes for the issues as part of the September Patch Tuesday bundle, and Wiz urges all Azure users to ensure they are running patched versions of the OMI. “In addition to Azure cloud customers, other Microsoft customers are affected since OMI can be independently installed on any Linux machine and is frequently used on-premise,” the researchers add.
In fact, Wiz researchers note that analyzing a small sample of Azure tenants revealed that over 65% were at risk of the vulnerabilities, colourfully named “OMIGOD” which was the researchers first reaction when they discovered them. These users put their VMs at risk when they use certain Azure services such as Azure Automation, Azure Automatic Update, Azure Log Analytics, Azure Configuration Management, and others.
The News Highlights
- Azure users running Linux VMs should update their systems immediately
- Check the latest News news updates and information about business, finance and more.
For Latest News Follow us on Google News
- Show all
- Trending News
- Popular By week