Skip to main content
Microsoft Security

Andrey Karpovsky Posts

Microsoft
Andrey Karpovsky
Senior Data Scientist, Microsoft Defender for Cloud Research Team
CISO (chief information security officer) collaborating with practitioners in a security operations center.
Published
6 min read

Detecting malicious key extractions by compromised identities for Azure Cosmos DB 

Azure Cosmos DB is a fully managed NoSQL cloud database service for modern app development. It offers a variety of advanced built-in features, such as automatic worldwide data replication, lightning-fast response types, and a variety of APIs. In this blog post, we describe security practices for securing access to Azure Cosmos DB and show how monitoring relevant control plane operations can help in the detection of potentially compromised authorization.