< ciso
brief />
Tag Banner

All news with #microsoft azure tag

65 articles · page 2 of 4

FedRAMP Clears Microsoft’s GCC High Despite Flaws, Concerns

🚨 An internal late-2024 government report reviewed by ProPublica found that Microsoft’s Government Community Cloud High lacked “proper detailed security documentation,” leaving evaluators with “a lack of confidence” in assessing the platform. One reviewer called the package “a pile of shit.” Despite those findings, FedRAMP authorized the product with a buyer-beware notice, a decision that helped Microsoft expand a multibillion-dollar federal cloud business.
read more →

Iran-Linked Password-Spraying Targets 300+ Israeli M365

🔒 Check Point reports an ongoing Iran-nexus password-spraying campaign against Microsoft 365 tenants, primarily impacting Israel and the U.A.E. in three waves on March 3, 13 and 23, 2026. The actor employed Tor exit nodes and commercial VPN infrastructure (AS35758) and used tools and techniques resembling Gray Sandstorm to scan, attempt logins, and exfiltrate mailbox content. Organizations are advised to enforce MFA, apply conditional access by geography, and monitor sign-in and audit logs for signs of compromise.
read more →

Sovereign AI at the Edge: Azure Local on Galleon MDC

🔒 Microsoft and Armada are integrating Azure Local and Foundry Local into Armada’s Galleon modular datacenters to provide a customer-controlled cloud for intermittently connected, contested, or fully disconnected environments. The validated reference architecture supports Azure Local control plane and managed clusters with multi-rack scalability, flexible hyperconverged or SAN-backed storage, and resilient multi-network connectivity including satellite, LTE/5G, RF, and SD-WAN. Designed for defense, public safety, energy, and other regulated sectors, the solution preserves Azure’s cloud operating model while enabling local AI inference and analytics to meet sovereignty, latency, and regulatory requirements.
read more →

AI for Nuclear Energy: Building Intelligent Resilience

⚛️ Microsoft announces an AI for nuclear collaboration with NVIDIA to deliver an end-to-end, AI-powered foundation for nuclear project delivery. The initiative pairs Microsoft Azure, generative AI for permitting, and NVIDIA simulation and AI stacks to speed design, streamline licensing, and improve operations via Digital Twins. Early adopters — including Aalo Atomics, Southern Nuclear, and Idaho National Laboratory — report major time and cost reductions while preserving regulatory traceability and security.
read more →

FabCon & SQLCon 2026: Unifying Databases and Fabric

🧩 Microsoft outlined a strategy at FabCon and SQLCon 2026 to converge its database portfolio and Microsoft Fabric into a single, unified data platform. Key highlights include the new Database Hub (early access) for unified estate management across Azure SQL, Cosmos DB, PostgreSQL, MySQL, SQL Server via Arc, and Fabric Databases. The company also showcased enhancements to OneLake, Runtime 2.0, Fabric IQ, agent experiences, migration assistants, and a database savings plan that can reduce costs up to 35% for eligible scenarios.
read more →

Iran-linked Hackers Claim Wiper Attack on Medtech Firm

🛡️A hacktivist group with reported ties to Iran's intelligence services has claimed responsibility for a large-scale data-wiping incident against Stryker, a global medical technology company. The group, known as Handala, said it erased data from more than 200,000 systems and forced shutdowns across 79 countries while Stryker sent thousands of staff in Ireland home and reported a building emergency at its U.S. headquarters. Reporting and internal sources indicate attackers may have used Microsoft Intune to issue remote wipe commands; some employee devices were reportedly wiped and defaced.
read more →

Modernizing Regulated Industries with Cloud and AI

🔒 Organizations are accelerating cloud migration to reduce IT operating costs, boost resilience, and prepare for expanded AI use, with IDC citing operational efficiency as the primary driver. Agentic AI automates discovery, orchestration, and continuous modernization across hybrid environments to shorten timelines and lower risk. Healthcare, financial services, and manufacturing face distinct regulatory, latency, and legacy constraints, and Microsoft positions Azure, Azure Copilot, and GitHub Copilot alongside migration frameworks, Azure Migrate, and the Azure Accelerate program to enable secure, industry-specific modernization informed by customer results.
read more →

Many Agents, One Team: Scaling Modernization on Azure

🤖 Microsoft introduces agentic modernization capabilities across Azure Copilot and GitHub Copilot, unifying IT and developer workflows to accelerate cloud migration and application modernization. New public preview agents — the Azure Copilot migration agent and the GitHub Copilot modernization agent — automate discovery, dependency mapping, planning, code transformation, and deployment at scale. The approach emphasizes human-led control, integrated database modernization, and operationalized delivery through Cloud Accelerate Factory to make modernization repeatable and measurable.
read more →

Fireworks AI in Microsoft Foundry for Open Model Inference

⚡ Microsoft announced the public preview of Fireworks AI on Microsoft Foundry, bringing high‑performance, low‑latency inference for open models to Azure. The integration provides day‑zero access to optimized open models (including MiniMax M2.5), serverless and provisioned pricing options, and bring‑your‑own‑weights support for quantized or fine‑tuned models. Foundry supplies a unified control plane for evaluation, deployment, governance, and observability so teams can operationalize open models without assembling bespoke stacks.
read more →

Microsoft Sovereign Cloud: Local Disconnected Operations

🔐 Microsoft introduces a fully localized sovereign stack enabling mission-critical operations in connected, intermittently connected, and fully disconnected environments. Azure Local provides on-premises Azure governance and policy controls even with no external connectivity, while Microsoft 365 Local runs core productivity servers inside customer boundaries. Foundry Local brings large multimodal model inferencing to secured, offline hardware so organizations can run AI locally and retain full data and operational control.
read more →

Agentic Cloud Operations: A New Way to Run Clouds Efficiently

🔧Azure Copilot introduces an agentic cloud operations paradigm that embeds AI-powered agents into everyday cloud workflows. These agents correlate telemetry, understand operational context, and take governed actions across migration, deployment, observability, resiliency, optimization, and troubleshooting. The service centralizes observability, configuration, and governance so teams can move from insight to action within a unified interface. Built-in controls such as BYOS for conversation history, RBAC, and auditability ensure compliance and preserve human oversight.
read more →

VoidLink Linux Malware Targets Multi-Cloud Environments

🔍 New analysis by Ontinue details VoidLink, a Linux-based command-and-control framework that generates implant binaries for credential theft, data exfiltration and stealthy persistence across cloud and enterprise hosts. The agent fingerprints AWS, GCP, Azure, Alibaba and Tencent environments and adapts its behavior, loading modular plugins for container escape and kernel-level stealth. Researchers identified unusual development artefacts — structured "Phase X:" labels, duplicated numbering, verbose debug logs and embedded documentation — that suggest parts of the implant were written or assisted by a large language model coding agent with limited human review.
read more →

Azure NetApp Files Elastic Zone-Redundant Storage Service

🔁 Microsoft announces Azure NetApp Files Elastic zone‑redundant storage (ANF Elastic ZRS), a managed multi‑AZ file service that synchronously replicates data across three or more availability zones to deliver high availability and resiliency. The service provides automatic, service‑managed failover while preserving the same mount target and service endpoint to minimize application disruption and ensure zero data loss. ANF Elastic ZRS supports NFS and SMB, ONTAP data management features (snapshots, clones, backup), metadata performance optimizations, and cost‑efficient single‑volume multi‑AZ availability.
read more →

PostgreSQL on Azure: Optimized for AI Scale and Speed

⚡ Microsoft has expanded its managed PostgreSQL offerings on Azure to support AI-native workloads by improving performance, scalability, and developer workflows. Azure Database for PostgreSQL now integrates with Microsoft Foundry for in-database LLM calls, offers DiskANN vector indexing for similarity search, and adds Parquet support for direct SQL access to object storage. Developers benefit from VS Code provisioning, Entra ID authentication, GitHub Copilot assistance, and a new Azure HorizonDB service for ultra-low-latency scale-out.
read more →

Testing Apps Exposed Online Used to Breach Fortune 500

⚠️ A recent Pentera investigation discovered nearly 2,000 intentionally vulnerable security-testing web applications (DVWA, OWASP Juice Shop, Hackazon, bWAPP) exposed on the public internet, often running from overly privileged cloud accounts on AWS, GCP and Azure. Attackers exploited these instances to deploy crypto miners, install webshells and create persistence mechanisms, then pivot to sensitive cloud resources. Affected vendors including Cloudflare, F5 and Palo Alto Networks were notified and remediated issues. Pentera recommends inventories, isolation of test systems, enforcement of least-privilege IAM, and elimination of default credentials.
read more →

Azure Private Endpoint DNS Risks Can Cause Service DoS

🔒 Unit 42 researchers discovered an Azure Private Endpoint DNS behavior that can unintentionally or deliberately produce denial-of-service conditions for Azure services. In several scenarios — accidental internal, accidental vendor, and malicious actor — linking a Private DNS zone to a virtual network can force name resolution to the private zone and fail when no A record exists, breaking connectivity to otherwise public endpoints. Microsoft documents a partial mitigation (fallback to internet); alternatives include manually adding DNS records and performing comprehensive discovery with Resource Graph.
read more →

Azure Strategic Planning Enables NVIDIA Rubin Deployments

🚀 Azure says its long-range datacenter strategy already accommodates NVIDIA Vera Rubin NVL72 racks, enabling rapid, large-scale rollouts across current Fairwater sites and planned AI superfactories. Microsoft highlights prior experience with Ampere, Hopper, GB200 and GB300 generations and claims its power, cooling, networking, and memory upgrades align with Rubin’s NVLink, ConnectX‑9, and HBM4 requirements. The post frames co-design work as reducing deployment risk and accelerating customer access to higher-performance inference and training at scale.
read more →

Azure Storage Innovations: Enabling AI and Cloud-Native

🤖 Microsoft announced a significant set of Azure Storage updates at Ignite 2025 and KubeCon to accelerate AI workloads, cloud-native applications, and migrations. Azure Blob Storage now targets exabyte-scale capacity and multi-tens of Tbps throughput, while Azure Managed Lustre (AMLFS 20 preview) offers 25 PiB namespaces, 512 GBps and HSM with auto-import/export. Additional enhancements — Premium Blob, Smart Tier, Azure Elastic SAN auto-scaling, Ultra Disk latency and cost improvements, Storage Discovery and Copilot, and expanded migration tooling — focus on low-latency inferencing, continuous GPU feeding for training, operational elasticity, and simplified data migrations.
read more →

Microsoft Expands U.S. Cloud Infrastructure and Regions

☁️ Microsoft is expanding its U.S. cloud footprint with a new East US 3 region in the Greater Atlanta Metro, scheduled to open in early 2027, and by adding capacity and Availability Zones across multiple existing U.S. regions. The East US 3 region is designed for resilience with Availability Zones, support for advanced AI workloads, and sustainability goals including LEED Gold and water conservation. Microsoft is also increasing zone redundancy in North Central US, West Central US, and the US Government Arizona region to boost capacity, compliance, and mission readiness.
read more →

Azure expands local and hybrid options for AI and control

🔒 Microsoft is expanding Azure with on‑premises, edge, and hybrid options to deliver AI, resilience, and operational sovereignty. Azure Local provides integrated compute, storage, and networking on customer premises with GA features like Microsoft 365 Local and NVIDIA Blackwell GPUs, plus previews for disconnected operations and multi‑rack scale. Coupled with Azure IoT, Microsoft Fabric, and Azure Arc management enhancements, the updates enable near‑real‑time analytics, secure device identity, and a unified control plane for distributed estates. The goal is to accelerate AI and analytics while preserving data residency, continuity, and compliance for regulated or mission‑critical environments.
read more →