ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Vulnerabilities in the public cloud. "
Episode Synopsis
Guest Ariel Zelivansky, Senior Manager of Security Research at Palo Alto Networks, joins Dave to discuss Unit 42's work on the first cross-account container takeover in the public cloud. The Unit 42 Threat Intelligence team has identified the first known vulnerability that could enable one user of a public cloud service to break out of their environment and execute code on environments belonging to other users in the same public cloud service. This unprecedented cross-account takeover affected Microsoft's Azure Container-as-a-Service (CaaS) platform. Researchers named the finding Azurescape because the attack started from a container escape – a technique that enables privilege escalation out of container environments.
The research can be found here:
What You Need to Know About Azurescape
Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances
Note: Microsoft is a sponsor of the CyberWire, however, we cover them as we would any other company.
Learn more about your ad choices. Visit megaphone.fm/adchoices
The research can be found here:
What You Need to Know About Azurescape
Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances
Note: Microsoft is a sponsor of the CyberWire, however, we cover them as we would any other company.
Learn more about your ad choices. Visit megaphone.fm/adchoices
More episodes of the podcast Research Saturday
Excel-lerating cyberattacks.
27/12/2025
The lies that let AI run amok.
20/12/2025
Root access to the great firewall.
13/12/2025
When macOS gets frostbite.
06/12/2025
A new stealer hiding behind AI hype.
29/11/2025
Two RMMs walk into a phish…
22/11/2025
When clicks turn criminal.
15/11/2025
A fine pearl gone rusty.
08/11/2025
Attack of the automated ops.
01/11/2025
A look behind the lens.
25/10/2025
In God we trust