Hybrid clouds have two attack surfaces and you’re not paying enough attention to either
Summary
Israeli researchers have discovered multiple vulnerabilities in Microsoft's Windows Admin Center (WAC) that create a two-way attack surface between on-premises and cloud environments. These flaws mean that an attacker could potentially pivot from an on-premise system to the cloud, or vice versa, through the WAC management tool.
IFF Assessment
The discovery of vulnerabilities in a critical hybrid cloud management tool presents a significant risk to organizations using these environments, as it opens new avenues for attackers.
Defender Context
This article highlights the critical need for organizations to thoroughly assess and secure the management tools used in hybrid cloud environments. Defenders should prioritize patching and hardening Windows Admin Center and similar tools, as well as implementing robust network segmentation and monitoring to detect and prevent lateral movement between on-premise and cloud resources.