Outages impacting Microsoft's Azure portal, Azure App Services, Azure IoT Central, Azure Policy, Azure Log Search Alerts, Application Insights, and some Microsoft 365 and Purview services lasting for almost 10 hours on Tuesday were attributed by Microsoft to a distributed denial-of-service attack exacerbated by misconfigured DDoS defenses, SC Media reports.
While Microsoft has addressed most of the disruptions by 14:10 UTC on July 30 after modifying networking configurations and rerouting user requests, no further information regarding the extent of the incident has been provided. Such an incident was noted by DoControl co-founder and CEO Adam Gavish to highlight the importance of comprehensive security testing in increasingly complex cloud environments while CyberArk Field Technology Office Senior Director David Higgins said that the intrusion may have been conducted by a hacktivist operation, similar to an attack last June.
"Following the recent global outage from the CrowdStrike update, service disruption is clearly on the world radar," Higgins added.