Azure's now-fixed Cosmos DB flaw could have been exploited to read, write any database
Microsoft warns customers of ChaosDB hole that lay dormant for months Infosec outfit Wiz has revealed that Microsoft’s flagship Azure database Cosmos DB could have been exploited to grant any Azure user full admin access – including the ability to read, write, and delete data – to any Cosmos DB instance on Azure. Without authorization. For months.... [...]