Azure users running Linux VMs should update their systems right away
Researchers highlight this as a real world example of a software supply chain vulnerability
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Four zero-day vulnerabilities in anopen sourcepiece of software that’s embedded in many popularAzureservices can be exploited for privilege escalation and remote code execution attacks, reportcybersecurityresearchers.
The vulnerabilities in the software agent named Open Management Infrastructure (OMI) were discovered by researchers atWiz, who estimate that they affect thousands of Azure customers, across millions of endpoints.
The OMI agent is automatically deployed insideLinuxvirtual machines (VM) when users enable certain Azure services, the researchers point out.
We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us.
Click here to start the survey in a new window«
“One of the biggest challenges in preventing [cyberattacks] is that our digital supply chain is not transparent. If you don’t know what’s hidden in the services and products you use every day, how can you manage the risk?” argue the researchers.
Software supply chain blind spot
The vulnerabilities affect Azure customers on Linux machines, which, according tosome estimates, make up a sizable number of all Azure instances.
These users put their VMs at risk when they use certain Azure services such as Azure Automation, Azure Automatic Update, Azure Log Analytics, Azure Configuration Management, and others.
In fact, Wiz researchers note that analyzing a small sample of Azure tenants revealed that over 65% were at risk of the vulnerabilities, colourfully named “OMIGOD” which was the researchers first reaction when they discovered them.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
“In addition to Azure cloud customers, otherMicrosoftcustomers are affected since OMI can be independently installed on any Linux machine and is frequently used on-premise,” the researchers add.
The good news is that Microsoft has shipped fixes for the issues as part of theSeptember Patch Tuesdaybundle, and Wiz urges all Azure users to ensure they are running patched versions of the OMI.
With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.
Nokia confirms data breach leaked third-party code, but its data is safe
Best CDN provider of 2024
Black Friday is here: Sony XM5 over-ears drop to their lowest-seen price – act fast!
