查看来自Azure内其他客户应用程序的入侵尝试 [英] Seeing intrusion attempts from other-customer apps within Azure

问题描述

我经常看到对某些Azure应用程序服务的请求，这些请求来自不存在的资源JNAP.aspx和HNAP1.aspx.这些请求来自同一子网内，即Azure中.我相信这些都是利用DLink的尝试 路由器漏洞(https://www.kb.cert.org/vuls/id/677427).似乎某些其他客户的应用程序或VM已受到威胁.我们如何解决这个问题?知道有人在尝试黑客攻击，我并不感到特别自在

肖恩-我们想在这个问题上与您紧密合作.您能打开一个支持案例并通过电子邮件将票证号发送给我们吗:azcommunity@microsoft.com.如果您的Azure合同没有支持计划，请在电子邮件中包含您的订阅ID.

I am frequently seeing requests to non-existent resources JNAP.aspx and HNAP1.aspx for some of my Azure app services. These requests are coming from within the same subnet, i.e. from within Azure. I believe these are attempts to exploit a DLink router vulnerability (https://www.kb.cert.org/vuls/id/677427). It would seem that some other-customer apps or VMs have been compromised. How do we go about getting this addressed? I'm not particularly comfortable knowing that someone is attempting to hack my apps from just outside the bedroom door, within the house.

解决方案

Hi Shaun - We'd like to work closer with you on this one. Could you open a support case and email us the ticket number at azcommunity@microsoft.com. If your Azure contract doesn't carry support plan, please include your subscription ID in your email.

这篇关于查看来自Azure内其他客户应用程序的入侵尝试的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！