Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn about undocumented APIs and stealthy attack methods in Microsoft Azure through this 25-minute conference talk from fwd:cloudsec Europe 2024. Explore how attackers can leverage both known and lesser-known APIs to gather information and perform actions against Azure environments while evading detection. Discover the challenges organizations face due to Azure's complex architecture of legacy and modern systems, and how different attack methods generate varying indicators. Principal security consultant Christian Philipov, who leads WithSecure Consulting's Cloud Security capability, shares insights on attack surface considerations, prevention controls, and essential telemetry sources for improving threat detection. Gain practical guidance on identifying and monitoring non-typical log sources to enhance Azure security posture and understand potential blind spots in defensive assumptions.
