DDoS Attack Knocks Azure Offline

Microsoft says that a widespread outage of Azure cloud applications was triggered by a Distributed-Denial-of-Service (DDoS) cyber attack. This incident affected a range of Microsoft products, including Outlook email services and the leading video gaming platform, Minecraft.

An unknown number of Azure customers, including some financial institutions, utilities and government agencies, suffered intermittent downtime and cyber security teams had to scramble to  deal with the incident, which is now understood to have been resolved. 

This event follows two weeks after the CrowdStrike outage which similarly affected users of Microsoft products and services. 

The company said their initial investigations show the outage was caused by a failure to adequately defend against a large-scale cyber attack. Microsoft has now issued an apology for the incident, which caused thousands of users to report issues with its services.

"While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack... initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it," said an update on the website of the Microsoft Azure cloud platform.

DDoS attacks work by flooding a website or online service with internet traffic in an attempt to knock it  offline, making inaccessible to users.

  • Amongst those affected were the British utility firm, Cambridge Water. "Due to worldwide issues with Microsoft Azure, a problem with our website is affecting several services including MyAccount and PayNow," it said on X.
  • The British Courts and Tribunals Service, which is responsible for the administration of criminal, civil and family courts and tribunals in England and Wales, also said  that it was aware of issues affecting multiple online services.  
  • Customers of the NatWest online banking platform also experience problems in accessing their accounts to carry out payments and transfers. 

Microsoft Azure has been a key profit driver for Microsoft in recent years, but growth has slowed in recent months fie to fierce competition in the cloud services business, causing concern amongst investors. Shares in the firm dropped by 2.7% in after-hours trade recently after the company reported weaker growth than expected in the April-June period.

This latest incident emphasises the risks that organisations take in placing a critical reliance on a single service supplier in a market for cloud services which is dominated by a small number of giant firms, who  have proved capable of driving down costs to deter new entrants. 

Azure   |   BBC   |    Mail   |    Cambridge Water   |    HMCTS   |   Yahoo    |      Yahoo   |   Sun   |   

Hindustan Times  

Image: Ideogram

You Might Also Read:  

AWS & Google Agree To Drop Cloud Service Exit Fees:


If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Grok Faces Prosecution For Misusing AI Training Data
Electric Vehicle Charging Stations Are Here - Will Cyberattacks Follow? »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Seagate Technology

Seagate Technology

Seagate data storage systems are purpose-built for enterprise and data centre performance, scalability, reliability and security.

Hivint

Hivint

Hivint is a new kind of Information Security professional services company enabling collaboration between our clients to reduce unnecessary security spend.

Cyber Security Raad (CSR) - Netherlands

Cyber Security Raad (CSR) - Netherlands

The Cyber Security Council (CSR) is a national, independent advisory body of the Dutch government undertaking efforts at strategic level to bolster cyber security in the Netherlands.

National Forensic Sciences University (NFSU) - India

National Forensic Sciences University (NFSU) - India

National Forensic Sciences University is the world’s first and only University dedicated to Digital Forensic and allied Sciences.

Quest Software

Quest Software

Simple IT management for a complex world. Whether it’s digital transformation, cloud expansion, security threats or something new, Quest helps you solve complex problems with simple solutions.

MicroEJ

MicroEJ

MicroEJ is a software vendor of cost-driven solutions for embedded and IoT devices.

Enet 1 Group1

Enet 1 Group1

Enet 1 Group audits, assesses, recommends, and delivers tested solutions for the ever-increasing threats to your critical systems and digital assets

Satori Cyber

Satori Cyber

The Satori Cyber Secure Data Access Cloud is the first solution on the market to offer continuous visibility and granular control for data flows across all cloud and hybrid data stores.

Nucleus Security

Nucleus Security

Nucleus is a leading Vulnerability Management platform for Large Enterprises, MSPs/MSSPs, and Application Security Teams that want more from their vulnerability management tools.

ABCsolutions

ABCsolutions

ABCsolutions is dedicated to assisting businesses and professionals achieve compliance with federal anti-money laundering regulations in an intelligent and pragmatic way.

Epiphany Systems

Epiphany Systems

Epiphany enhances your defensive security controls by providing you with an offensive perspective. We expose the most likely attack paths to your most critical IT assets and users.

HACKNER Security Intelligence

HACKNER Security Intelligence

HACKNER Security Intelligence is an independent security consultancy delivering comprehensive security assessments across IT security, physical security, and social engineering.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

Raman Power Technologies

Raman Power Technologies

Raman Power Technologies focus on bringing value and solving business challenges through the delivery of modern IT services and solutions including cybersecurity.

ExchangeDefender

ExchangeDefender

ExchangeDefender provides cybersecurity services that secures your company email and data, and guarantees 24/7 email access.

Dream

Dream

Dream is developing an AI platform that enables cyber resilience and protects nations from hostile nation-states cyber attacks.