You're saying this is promoting Microsoft? I would consider an article pointing out a vulnerability in Azure to be bad publicity for Microsoft. The title of the article also almost makes it sound like Microsoft is behaving nefariously by having a secret agent:
>“Secret” Agent Exposes Azure Customers To Unauthorized Code Execution
I think it was the multiple references to OSS being dangerous (never figured out why) left a bad taste for me.
But the vulnerability is only for azure Linux hosts so not sure how to report it without mentioning Linux.
What’s comical though, is I wonder what they use for Windows/non-Linux hosts. Is there an OMI equivalent for those hosts? Unless it’s open source, I guess we won’t know if it has a vulnerability.
>“Secret” Agent Exposes Azure Customers To Unauthorized Code Execution