Announcing BlueHat 2024: Call for Papers now open 

Congratulations to the MSRC 2024 Most Valuable Security Researchers! 

Microsoft Bounty Program Year in Review: $16.6M in Rewards 

Introducing the MSRC Researcher Resource Center

Congratulations to the Top MSRC 2024 Q2 Security Researchers!

On December 10, 2021, Microsoft mitigated a vulnerability in the Azure Automation service. Azure Automation accounts that used Managed Identitiestokens for authorization and an Azure Sandbox for job runtime and execution were exposed. Microsoft has not detected evidence of misuse of tokens.
Microsoft has notified customers with affected Automation accounts. Microsoft recommends following the security best practices herefor the Azure Automation service

Headline

Disclosure of Vulnerability in Azure Automation Managed Identity Tokens

msrc-blog: Latest News