cloud risks

Microsoft’s advisory that a newly recorded vulnerability, tracked as CVE‑2025‑64657, affects Azure Application Gateway and can lead to elevation of privilege has raised immediate operational questions for cloud teams: what exactly is known, how confident should defenders be in the published...

Microsoft’s latest push to dress the cloud in national colours is the clearest admission yet that sovereignty in the cloud is more marketing posture than legal reality — and that customers, regulators and rivals will have to work harder than ever to separate technical controls from...

Two hyperscaler outages within ten days — an October AWS incident traced to DynamoDB/DNS and a late‑October Azure failure tied to an Azure Front Door configuration change — have reopened an old but urgent conversation: the cloud gives scale and speed, but concentrated dependence on a handful of...

A large-scale disruption to Microsoft’s cloud platform briefly knocked a wide swath of services offline on October 29, 2025, after engineers traced the problem to an inadvertent configuration change in Azure Front Door (AFD), Microsoft’s global edge and application-delivery service; the company...

Microsoft’s Azure outage on October 29 briefly knocked Alaska Airlines’ website and mobile app offline, compounding a week of severe technology problems for the carrier and underscoring how edge‑level cloud failures can produce immediate, real‑world disruption for airlines and their customers...

A critical security vulnerability, identified as CVE-2025-53767, has been discovered in Microsoft's Azure OpenAI service, potentially allowing attackers to escalate their privileges within affected systems. This flaw underscores the importance of robust security measures in cloud-based AI...

A critical security vulnerability, identified as CVE-2025-53792, has been disclosed in the Azure Portal, Microsoft's web-based application for managing Azure services. This elevation of privilege vulnerability allows authenticated attackers to gain unauthorized administrative access, posing...

Abnormal AI’s latest update to its Security Posture Management platform marks a significant leap forward in the race to secure Microsoft 365 environments, meeting the growing demand for automated, AI-driven defense against sophisticated threat actors and accidental misconfigurations. As...

A groundbreaking investigation has revealed that Israel’s military intelligence, through a partnership with Microsoft, has been utilizing the Azure cloud platform to store and analyze an immense archive of intercepted Palestinian communications. Documents and sources indicate that since 2022...

Microsoft’s abrupt disconnection of Nayara Energy, a major Indian oil refinery operator, from its cloud services sent ripples throughout the global tech and energy sectors—a move spurred not by technical woes, but by geopolitical sanctions issued by the European Union. The incident, emblematic...

On April 30, 2025, Microsoft disclosed a critical security vulnerability identified as CVE-2025-30390, affecting Azure Machine Learning (Azure ML). This flaw allows authenticated attackers to escalate their privileges over a network, potentially compromising entire machine learning workloads...

Microsoft’s recent admission before the French Senate that it cannot guarantee protection of French citizen data from US government access, even when stored in EU datacenters, has sent ripples through Europe’s digital sovereignty and cloud computing debates. This revelation—a public...

CoreStack’s latest achievement—the Microsoft Solutions Partner designation with Certified Software for Azure—marks a pivotal moment in the ongoing evolution of enterprise cloud governance and security. For Windows and cloud professionals tracking the maturation of tools in the Microsoft...

For millions of users across the globe, email remains an indispensable digital lifeline, enabling everything from critical business communication to maintaining personal connections. So, when a trusted platform like Microsoft Outlook suffers an hourslong outage that disrupts access for...

Microsoft Outlook, a linchpin of both business and personal communication, has recently endured a spate of outages that have underscored the vulnerabilities in even the most trusted digital tools. For users across the globe who rely on Outlook for everything from time-sensitive business...

CoreStack’s recent achievement—earning the coveted Microsoft Solutions Partner designation with Certified Software status for Azure—marks a pivotal moment not just for the company, but for the broader ecosystem of enterprise cloud governance and security. As organizations worldwide accelerate...

In the digital era, seamless access to communication platforms is not just a convenience—it's a necessity. On the evening of July 9, 2025, this reality was starkly highlighted as millions worldwide found themselves abruptly cut off from one of the globe’s most relied-upon email services...

Cybersecurity researchers have recently uncovered a sophisticated attack technique that exploits misconfigured Microsoft Azure Arc deployments, enabling adversaries to escalate privileges from cloud environments to on-premises systems and maintain persistent access within enterprise...

Microsoft Azure Arc, designed to provide unified management across on-premises, cloud, and edge resources, continues to be a cornerstone for enterprises seeking hybrid infrastructure agility. However, recent warnings from IBM’s X-Force and corroborating industry analysis have illuminated...

For years, Microsoft Azure has stood as one of the core pillars of cloud infrastructure for organizations worldwide, embodying the promise of scalable, secure, and flexible platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) solutions. However, a newly surfaced set of...