Microsoft flags Azure database vulnerability for thousands of customers

Microsoft has fixed a critical vulnerability in its Azure Cosmos DB database that allowed hackers to gain unrestricted access to the accounts of several thousand customers. The flaw was found in a feature of Cosmos DB’s Jupyter Notebook data visualization tool. Microsoft disabled the vulnerable feature within 48 hours and notified affected customers. The cybersecurity firm Wiz, which discovered the flaw, was awarded $40,000 by Microsoft. The incident highlights the growing concern of inadvertent data exposure as more companies move to cloud-based data management.