Azure Purge Prevention Disabled
Description
Identifies Azure Key Vaults that have purge protection disabled. When purge protection is not enabled, deleted key vaults and their contents can be permanently erased, increasing the risk of data loss through accidental deletion or malicious actions.
Detection Strategy
• Scans all Azure Key Vaults in the subscription
• Checks if the 'enable_purge_protection' property is disabled or not set
• Reports a vulnerability if purge protection is not enabled for a key vault
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.