DDoS Attack Knocks Azure Offline

Uploaded on 2024-07-31 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Microsoft says that a widespread outage of Azure cloud applications was triggered by a Distributed-Denial-of-Service (DDoS) cyber attack. This incident affected a range of Microsoft products, including Outlook email services and the leading video gaming platform, Minecraft.

An unknown number of Azure customers, including some financial institutions, utilities and government agencies, suffered intermittent downtime and cyber security teams had to scramble to  deal with the incident, which is now understood to have been resolved. 

This event follows two weeks after the CrowdStrike outage which similarly affected users of Microsoft products and services. 

The company said their initial investigations show the outage was caused by a failure to adequately defend against a large-scale cyber attack. Microsoft has now issued an apology for the incident, which caused thousands of users to report issues with its services.

"While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack... initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it," said an update on the website of the Microsoft Azure cloud platform.

DDoS attacks work by flooding a website or online service with internet traffic in an attempt to knock it  offline, making inaccessible to users.

  • Amongst those affected were the British utility firm, Cambridge Water. "Due to worldwide issues with Microsoft Azure, a problem with our website is affecting several services including MyAccount and PayNow," it said on X.
  • The British Courts and Tribunals Service, which is responsible for the administration of criminal, civil and family courts and tribunals in England and Wales, also said  that it was aware of issues affecting multiple online services.  
  • Customers of the NatWest online banking platform also experience problems in accessing their accounts to carry out payments and transfers. 

Microsoft Azure has been a key profit driver for Microsoft in recent years, but growth has slowed in recent months fie to fierce competition in the cloud services business, causing concern amongst investors. Shares in the firm dropped by 2.7% in after-hours trade recently after the company reported weaker growth than expected in the April-June period.

This latest incident emphasises the risks that organisations take in placing a critical reliance on a single service supplier in a market for cloud services which is dominated by a small number of giant firms, who  have proved capable of driving down costs to deter new entrants. 

Azure   |   BBC   |    Mail   |    Cambridge Water   |    HMCTS   |   Yahoo    |      Yahoo   |   Sun   |   

Hindustan Times  

Image: Ideogram

You Might Also Read:  

AWS & Google Agree To Drop Cloud Service Exit Fees:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Grok Faces Prosecution For Misusing AI Training Data
Electric Vehicle Charging Stations Are Here - Will Cyberattacks Follow? »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ComSec LLC

ComSec LLC

ComSec perform threat assessments to identify vulnerabilities and help protect businesses against corporate espionage via electronic eavesdropping.

CloudDNA

CloudDNA

CloudDNA deliver solutions that enable users and devices to connect over high performance, secure, efficient, scalable cloud networks.

Nutanix

Nutanix

The Nutanix enterprise cloud platform provides performance, robust security, and seamless application mobility for a broad range of enterprise applications.

Secusmart

Secusmart

Secusmart provide highly secure and encrypted speech and data communication solutions.

Entrust

Entrust

Entrust is a global leader in digital security, identities, payments, and data protection.

Resolver

Resolver

Resolver’s Integrated Risk Management platform helps plan and prepare your organization to limit the likeliness or impact of security risk and compliance events from occurring.

HKCERT

HKCERT

HKCERT is the centre for coordination of computer security incident response for local enterprises and Internet Users in Hong Kong.

SpeQtral

SpeQtral

SpeQtral offers commercial space-based Quantum Key Distribution (QKD) founded on technology developed at the National University of Singapore.

BrainStorm

BrainStorm

BrainStorm Threat Defense takes a new human-focused approach to security awareness that traditional training lacks. It’s a cutting-edge platform to make your users more security savvy.

PhishProtection

PhishProtection

We created Phish Protection to prevent all types of phishing including spear phishing protection and office 365 email protection for your small business.

Gatefy

Gatefy

Getfy is a cybersecurity company specialized in artificial intelligence and machine learning. We work to solve challenging issues, especially those involving email security.

SE Ventures

SE Ventures

SE Ventures provides capital to big ideas and bold entrepreneurs who can benefit from Schneider Electric's deep domain expertise, R&D assets, and global customer base.

Menaya

Menaya

Menaya provide Ethical Hackers for leading companies while also providing cyber security solutions to help major infrastructures protect against cyber crime.

OpenAI

OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity.

AI or Not

AI or Not

AI or Not - Leverage AI to combat misinformation and elevate the landscape of compliance solutions.

KIT365

KIT365

KIT365 aim to protect organisations against cyber security attacks, by mitigating the risk to their systems and information, and protecting their data and reputation.