Microsoft Rolls Out Metadata Security Protocol (MSP) to Enhance Security for Azure VMs -- Redmondmag.com

Redmond Dispatch

Microsoft Rolls Out Metadata Security Protocol (MSP) to Enhance Security for Azure VMs

Microsoft has introduced the Metadata Security Protocol (MSP) for Azure virtual machines. MSP elevates access control for the Azure Instance Metadata Service (IMDS) and WireServer endpoints—long-used in bootstrapping and management but frequently targeted in attacks such as confused-deputy or internal privilege escalation. By deploying a Guest Proxy Agent in-guest and intercepting metadata requests via eBPF, MSP ensures only authorized processes can access metadata and securely endorses calls using HMAC signatures.

The security upgrade arrives amid growing concern over metadata-service vulnerabilities in cloud environments. Other industry-first protections feature improved isolation, fine-grained access control and default locked down IMDS access for a default-closed model. This provides defense against metadata-related attacks, granular control within VMs and industry-leading protection.

Posted by Redmondmag.com Editors on 11/20/2025

Featured

Microsoft, Chevron Partner on Power Deal for Massive Texas AI Datacenter

Microsoft on Monday unveiled plans for one of the largest datacenter expansions in its history, pairing a new 2-gigawatt AI-focused campus in Pecos, Texas, with a 20-year power agreement from Chevron designed to ensure the facility has dedicated energy capacity as demand for AI services continues to surge.
Where Air Gapped Backups Actually Fail, Part 2

Air gapped backups can still fail when configuration drift, lost encryption keys and routine human mistakes go unnoticed until recovery is needed.
Nadella Says Enterprise AI's Future May Depend Less on Frontier Models Than Learning Systems

Satya Nadella is making the case that the next phase of enterprise AI will not be won by the company with the highest-scoring model on a public leaderboard.
AI Agents Could Put Enterprise GenAI Budgets Under Pressure

Enterprises moving generative AI from pilots into production may be underestimating the cost of running those systems at scale, particularly as inference workloads and AI agents become more common, according to a new Gartner report.
Banks Targeted by Fileless Phantom Stealer Phishing Campaign

A new phishing campaign is targeting banks and other high-value organizations with Phantom Stealer, a commercially available infostealer that runs in memory to avoid traditional detection, according to new research from Fortra.

comments powered by Disqus

Subscribe on YouTube

Office 365 Watch

Email Address*Country*

Please type the letters/numbers you see above.

Upcoming Training Events

0 AM

Live! 360 2-Day Hands-On Seminar: AI-Powered .NET Development with Claude & Claude Code
July 9-10, 2026

TechMentor & Cybersecurity Live! @ Microsoft HQ
August 3-7, 2026

The AI Pivot
September 25, 2026

Live! 360 6-Week Training & Certification Course: Mastering the Microsoft AI Framework: Building Enterprise-Ready AI Agents with Microsoft Foundry
October 6–November 10, 2026

Live! 360 Orlando
November 15-20, 2026

Artificial Intelligence Live! Orlando
November 15-20, 2026

AI Enterprise Architecture Live! Orlando
November 15-20, 2026

Cybersecurity & Ransomware Live! Orlando
November 15-20, 2026

Data Platform Live! Orlando
November 15-20, 2026

TechMentor Orlando
November 15-20, 2026

Live! 360 2-Day Hands-On Seminar: AI-Powered .NET Development with Claude & Claude Code
December 8-9, 2026

Webcasts

More Webcasts

Whitepapers

More Tech Library

Redmond Dispatch