DDoS Attack Knocks Azure Offline

Uploaded on 2024-07-31 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Microsoft says that a widespread outage of Azure cloud applications was triggered by a Distributed-Denial-of-Service (DDoS) cyber attack. This incident affected a range of Microsoft products, including Outlook email services and the leading video gaming platform, Minecraft.

An unknown number of Azure customers, including some financial institutions, utilities and government agencies, suffered intermittent downtime and cyber security teams had to scramble to  deal with the incident, which is now understood to have been resolved. 

This event follows two weeks after the CrowdStrike outage which similarly affected users of Microsoft products and services. 

The company said their initial investigations show the outage was caused by a failure to adequately defend against a large-scale cyber attack. Microsoft has now issued an apology for the incident, which caused thousands of users to report issues with its services.

"While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack... initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it," said an update on the website of the Microsoft Azure cloud platform.

DDoS attacks work by flooding a website or online service with internet traffic in an attempt to knock it  offline, making inaccessible to users.

  • Amongst those affected were the British utility firm, Cambridge Water. "Due to worldwide issues with Microsoft Azure, a problem with our website is affecting several services including MyAccount and PayNow," it said on X.
  • The British Courts and Tribunals Service, which is responsible for the administration of criminal, civil and family courts and tribunals in England and Wales, also said  that it was aware of issues affecting multiple online services.  
  • Customers of the NatWest online banking platform also experience problems in accessing their accounts to carry out payments and transfers. 

Microsoft Azure has been a key profit driver for Microsoft in recent years, but growth has slowed in recent months fie to fierce competition in the cloud services business, causing concern amongst investors. Shares in the firm dropped by 2.7% in after-hours trade recently after the company reported weaker growth than expected in the April-June period.

This latest incident emphasises the risks that organisations take in placing a critical reliance on a single service supplier in a market for cloud services which is dominated by a small number of giant firms, who  have proved capable of driving down costs to deter new entrants. 

Azure   |   BBC   |    Mail   |    Cambridge Water   |    HMCTS   |   Yahoo    |      Yahoo   |   Sun   |   

Hindustan Times  

Image: Ideogram

You Might Also Read:  

AWS & Google Agree To Drop Cloud Service Exit Fees:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Grok Faces Prosecution For Misusing AI Training Data
Electric Vehicle Charging Stations Are Here - Will Cyberattacks Follow? »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Paessler

Paessler

Paessler is a leading worldwide provider of network monitoring software.

Netsparker

Netsparker

Netsparker provide a web application security scanner to automatically find security flaws in your websites, web applications and web services.

Ilex International

Ilex International

Ilex International is a European software vendor which specialises in Identity & Access Management solutions.

Advisen

Advisen

Advisen is the leading provider of data, media, and technology solutions for the commercial property and casualty insurance market including cyber risk.

Decision Group

Decision Group

Decision Group are a Total Solution Supplier offering Network Forensics and Lawful Interception tools.

Cyber Resilient Energy Delivery Consortium (CREDC)

Cyber Resilient Energy Delivery Consortium (CREDC)

CREDC performs multidisciplinary R&D in support of the Energy Sector Control Systems Working Group’s Roadmap of resilient Energy Delivery Systems (EDS).

Gilbert + Tobin

Gilbert + Tobin

Gilbert + Tobin is an Australian corporate law firm serving clients throughout Australia, and around the world, on a broad range of legal issues including cyber security.

LOGbinder

LOGbinder

LOGbinder eliminates blind spots in security intelligence for endpoints and applications.

Nucleus Security

Nucleus Security

Nucleus is a leading Vulnerability Management platform for Large Enterprises, MSPs/MSSPs, and Application Security Teams that want more from their vulnerability management tools.

DeepSeas

DeepSeas

DeepSeas is the result of a merger between Security On-Demand (SOD) and the commercial Managed Threat Services (MTS) business of Booz Allen Hamilton.

Zephyr Project

Zephyr Project

The Zephyr Project strives to deliver the best-in-class RTOS for connected resource-constrained devices, built to be secure and safe.

North West Cyber Resilience Centre (NWCRC)

North West Cyber Resilience Centre (NWCRC)

The North West Cyber Resilience Centre is a trusted, not-for-profit venture between Greater Manchester Police and Manchester Digital.

South East Cyber Resilience Centre (SECRC)

South East Cyber Resilience Centre (SECRC)

The South East Cyber Resilience Centre supports and helps protect SMEs and supply chain businesses and third sector organisations in the region against cyber crime.

Gulf Business Machines (GBM)

Gulf Business Machines (GBM)

GBM is a leading end-to-end digital solutions provider, offering the broadest portfolio, including industry-leading digital infrastructure, digital business solutions, security and services.

Uptime Institute

Uptime Institute

Uptime Institute is an unbiased advisory organization focused on improving the performance, efficiency, and reliability of business critical infrastructure.

Cloudbrink

Cloudbrink

Cloudbrink is purpose-built to deliver the industry’s highest performance connectivity to remote and hybrid workers, anywhere in the world.