London Drugs closes all of its pharmacies following ‘cybersecurity incident’

External Penetration Testing

Secure Internet-facing IT assets.

Internal Penetration Testing

Secure internal networks and servers.

Web Application Penetration Testing

Secure mission-critical Web Apps & APIs.

Medical Device Penetration Testing

Secure smart medical equipment & data.

Cloud Security Services

Secure cloud-hosted assets & environments.

SCADA Cybersecurity Assessment

Secure SCADA / ICS systems & networks.

Cyber Maturity Assessment

Assess and prioritize your cybersecurity.

Red Team Security Services

Protect against sophisticated cyberattacks.

Consulting & Professional Services

Get advice and support from certified experts.

Compliance Services

Meet the requirements of various standards.

View All Vumetric Services →

SOLUTIONS BY STANDARD

SOLUTIONS BY INDUSTRY

SOLUTIONS BY CHALLENGE

Secure your network infrastructure

Protect your network from security breaches.

Secure your applications

Secure your missions-critical applications (Web, Mobile ,etc.).

Secure your cloud infrastructure

Ensure the security of your cloud environments.

Prevent ransomware attacks

Protect your business from ransomware attacks.

Contact a Cybersecurity Specialist →

About Vumetric

Learn more about Vumetric and discover why hundreds of organizations trust our experts.

Partnership Program

Unlock new business opportunites by reselling top-of-the-line cybersecurity services.

Certifications

Discover our team's cybersecurity and penetration testing certifications.

PTaaS Platform

Discover the modern way to launch and manage your penetration testing projects.

Methodologies

Discover our cybersecurity testing methodologies and standards.

Careers

Explore new career opportunities and join our team of passionate experts.

Microsoft releases fixes for Azure flaw allowing RCE attacks

Cloud, Microsoft, Microsoft Azure, RCE
May 10, 2022

Microsoft has released security updates to address a security flaw affecting Azure Synapse and Azure Data Factory pipelines that could let attackers execute remote commands across Integration Runtime infrastructure.

The Integration Runtime compute infrastructure is used by Azure Synapse and Azure Data Factory pipelines to provide data integration capabilities across network environments package execution).

“The vulnerability was found in the third-party ODBC data connector used to connect to Amazon Redshift, in Integration Runtime in Azure Synapse Pipelines, and Azure Data Factory,” Microsoft explained in a security advisory published today.

“Customers using Azure Data Factory can enable Azure integration runtimes with a Managed Virtual Network.”

In March, Microsoft said it fixed another Azure security vulnerability in December that enabled attackers to take complete control over other Azure customers’ data by abusing an Azure Automation service bug dubbed AutoWarp.

Other Microsoft Azure flaws fixed by Redmond during the last year include ones found in Azure Cosmos DB, the Open Management Infrastructure software agent, and the Azure App Service.

Share this article on social media:

Subscribe to Our Newsletter!

Stay on top of cybersecurity risks, evolving threats and industry news.

London Drugs closes all of its pharmacies following ‘cybersecurity incident’

2024-04-29

Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359)

2024-04-25

Microsoft releases Exchange hotfixes for security update issues

2024-04-23

Synlab Italia suspends operations following ransomware attack

2024-04-22

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

Palo Alto firewalls: Public exploits, rising attacks, ineffective mitigation

2024-04-17

Cisco Duo provider breached, SMS MFA logs compromised

2024-04-16

Microsoft will limit Exchange Online bulk emails to fight spam

View more cybersecurity news →

Featured Services

Web Application Penetration Testing

External Network Penetration Testing

Internal Network Penetration Testing

Medical Device Penetration Testing

Cloud Infrastructure Penetration Testing

Enterprise
Cybersecurity Audit

The Latest Cybersecurity News

From major cyberattacks, newly discovered critical vulnerabilities to recommended best practices, read it here first:

Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359)

A state sponsored threat actor has managed to compromise Cisco Adaptive Security Appliances used on government networks across the globe and use two zero day vulnerabilities to install backdoors on

Read The Article →

Microsoft releases Exchange hotfixes for security update issues

Microsoft has released hotfix updates to address multiple known issues impacting Exchange servers after installing the March 2024 security updates

Read The Article →

Synlab Italia suspends operations following ransomware attack

Synlab Italia has suspended all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline

Read The Article →

VIEW MORE RECENT NEWS →

CONTACT US

Get in Touch With The Team

Whether you’re looking for more information on our services or simply have a general inquiry, our team remains at your disposal to answer any questions or provide guidance.

A Vumetric expert will be in touch shortly to discuss further.

4.9

5.0

BUILD A QUOTE

RECEIVE YOUR QUOTE QUICKLY

Step 1 of 11

What type of test do you need a quote for?(Required)

External Pentest

Internal Pentest

Web Application Pentest

Mobile Application Pentest

API / Web Service Pentest

Cloud Infra. Pentest

Phishing Simulation

Other Services

What you will get in your detailed quote:

Activities

Including methodologies

Deliverables

Report table of content

Total cost

All-inclusive flat fee

More than 500 organizations received a quote from us in 2023

BOOK A MEETING

Schedule a Meeting With The Team

Looking for more details on how we can help or need guidance to determine the approach best suited for your organization? Plan a virtual meeting with a member of our team to discuss further without any engagement.

* No free email provider (e.g: gmail.com, hotmail.com, etc.)

What happens next?

A Vumetric expert learns about your needs and objectives during a quick meeting.

A project scope is defined (target environment, deadlines, requirements, etc.)

A detailed quote including all-inclusive pricing and statement of work is provided.

CONTACT US

Get in Touch With The Team

Whether you’re looking for more information on our services or simply have a general inquiry, our team remains at your disposal to answer any questions or provide guidance.

A Vumetric expert will be in touch shortly to discuss further.

4.9

5.0

BUILD A QUOTE

RECEIVE YOUR QUOTE QUICKLY

Step 1 of 11

What type of test do you need a quote for?(Required)

External Pentest

Internal Pentest

Web Application Pentest

Mobile Application Pentest

API / Web Service Pentest

Cloud Infra. Pentest

Phishing Simulation

Other Services

What you will get in your detailed quote:

Activities

Including methodologies

Deliverables

Report table of content

Total cost

All-inclusive flat fee

More than 500 organizations received a quote from us in 2023

BOOK A MEETING

Schedule a Meeting With The Team

* No free email provider (e.g: gmail.com, hotmail.com, etc.)

What happens next?

A Vumetric expert learns about your needs and objectives during a quick meeting.

A project scope is defined (target environment, deadlines, requirements, etc.)

A detailed quote including all-inclusive pricing and statement of work is provided.

Have a Question?

Got an Urgent Need?

1-877-805-7475

Stay Updated on Cyber Risks

Subscribe to the Vumetric Monthly Bulletin to keep up with breaking news in the cybersecurity industry.

1-877-805-7475

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.

External Penetration Testing

Internal Penetration Testing

Web Application Penetration Testing

Medical Device Penetration Testing

Cloud Security Services

SCADA Cybersecurity Assessment

Cyber Maturity Assessment

Red Team Security Services

Consulting & Professional Services

Compliance Services

About Vumetric

Partnership Program

Certifications

PTaaS Platform

Methodologies

Careers

Microsoft releases fixes for Azure flaw allowing RCE attacks

Recent News

Featured Services

The Latest Cybersecurity News

CONTACT US

Get in Touch With The Team

4.9

4.9

5.0

BUILD A QUOTE

RECEIVE YOUR QUOTE QUICKLY

What you will get in your detailed quote:

Activities

Deliverables

Total cost

More than 500 organizations received a quote from us in 2023

BOOK A MEETING

Schedule a Meeting With The Team

What happens next?

CONTACT US

Get in Touch With The Team

4.9

4.9

5.0

BUILD A QUOTE

RECEIVE YOUR QUOTE QUICKLY

What you will get in your detailed quote:

Activities

Deliverables

Total cost

More than 500 organizations received a quote from us in 2023

BOOK A MEETING

Schedule a Meeting With The Team

What happens next?

USA - HQ

Canada - HQ

Canada - Satellite

PENETRATION TESTING Buyer's Guide

Everything You Need to Know

BOOK A MEETING

Enter your Email Address