DDoS Attack Knocks Azure Offline

Uploaded on 2024-07-31 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Microsoft says that a widespread outage of Azure cloud applications was triggered by a Distributed-Denial-of-Service (DDoS) cyber attack. This incident affected a range of Microsoft products, including Outlook email services and the leading video gaming platform, Minecraft.

An unknown number of Azure customers, including some financial institutions, utilities and government agencies, suffered intermittent downtime and cyber security teams had to scramble to  deal with the incident, which is now understood to have been resolved. 

This event follows two weeks after the CrowdStrike outage which similarly affected users of Microsoft products and services. 

The company said their initial investigations show the outage was caused by a failure to adequately defend against a large-scale cyber attack. Microsoft has now issued an apology for the incident, which caused thousands of users to report issues with its services.

"While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack... initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it," said an update on the website of the Microsoft Azure cloud platform.

DDoS attacks work by flooding a website or online service with internet traffic in an attempt to knock it  offline, making inaccessible to users.

  • Amongst those affected were the British utility firm, Cambridge Water. "Due to worldwide issues with Microsoft Azure, a problem with our website is affecting several services including MyAccount and PayNow," it said on X.
  • The British Courts and Tribunals Service, which is responsible for the administration of criminal, civil and family courts and tribunals in England and Wales, also said  that it was aware of issues affecting multiple online services.  
  • Customers of the NatWest online banking platform also experience problems in accessing their accounts to carry out payments and transfers. 

Microsoft Azure has been a key profit driver for Microsoft in recent years, but growth has slowed in recent months fie to fierce competition in the cloud services business, causing concern amongst investors. Shares in the firm dropped by 2.7% in after-hours trade recently after the company reported weaker growth than expected in the April-June period.

This latest incident emphasises the risks that organisations take in placing a critical reliance on a single service supplier in a market for cloud services which is dominated by a small number of giant firms, who  have proved capable of driving down costs to deter new entrants. 

Azure   |   BBC   |    Mail   |    Cambridge Water   |    HMCTS   |   Yahoo    |      Yahoo   |   Sun   |   

Hindustan Times  

Image: Ideogram

You Might Also Read:  

AWS & Google Agree To Drop Cloud Service Exit Fees:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Grok Faces Prosecution For Misusing AI Training Data
Electric Vehicle Charging Stations Are Here - Will Cyberattacks Follow? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Pondurance

Pondurance

Pondurance is an IT Security and Compliance company providing services in Cyber Security, Continuity, Compliance and Threat Management.

Cloud Credential Council (CCC)

Cloud Credential Council (CCC)

The CCC is a leading provider of vendor-neutral certification programs that empower IT and business professionals in their digital transformation journey.

Truth Technologies Inc (TTI)

Truth Technologies Inc (TTI)

TTI is a premier provider of worldwide anti-money laundering, anti-fraud, customer identification, and compliance products and services.

Redbud

Redbud

Redbud is a specialist search and recruitment firm for Information Security professionals.

Glasswall Solutions

Glasswall Solutions

Glasswall Solutions has developed a disruptive, innovative security technology which provides unique protection against document based cyber threats.

Ponemon Institute

Ponemon Institute

Ponemon Institute conducts independent research on data protection and emerging information technologies.

Miratech

Miratech

Miratech is a global IT services and consulting organization offering a full range of IT infrastructure solutions and services including cyber security.

Sphonic

Sphonic

Sphonic provides regulated institutions of any size a powerful compliance & risk platform to quickly and securely onboard new customers and manage ongoing AML and Fraud & Risk trends.

HCC Embedded

HCC Embedded

HCC’s mission is to ensure that data stored or communicated by an embedded IoT application is secure, safe and reliable.

Global EPIC

Global EPIC

Global EPIC is an international cybersecurity initiative designed to combat growing world challenges by facilitating global collaboration in the field of cyber security.

Ethyca

Ethyca

Ethyca builds automated data privacy infrastructure and tools for developers and privacy teams to easily build products that comply with GDPR, CCPA Privacy Regulations.

Soteria

Soteria

Soteria is a global leader in the development, integration and implementation of advanced cyber security, intelligence and IT solutions, delivering complete end-to-end solutions.

National Cyber Security Center (NCSC) - Vietnam

National Cyber Security Center (NCSC) - Vietnam

National Cyber Security Center of Vietnam has a central monitoring function and is a technical focal point for monitoring and supporting information security for people, businesses and systems.

Wadilona Cyber Securities

Wadilona Cyber Securities

Wadilona Cyber Securities' sole aim is to bring and secure Information and Communications Technology (ICT) to and work for humans in its simplest terms.

Skyhawk Security

Skyhawk Security

Skyhawk Security is the originator of Cloud threat Detection and Response (CDR), helping hundreds of users map and remediate sophisticated threats to cloud infrastructure in minutes.

OneZero Solutions

OneZero Solutions

OneZero specialize in cybersecurity operations, information assurance, computer network operations, solutions engineering, and project management.