Azure Soft Delete Disabled
Description
Detects Azure Storage Accounts with insufficient data protection configurations where soft delete is either disabled or configured with an insufficient retention period. Without proper soft delete settings, accidentally deleted data cannot be recovered, increasing the risk of data loss.
Detection Strategy
• Checks if soft delete retention policy is disabled (delete_retention_policy.enabled = false)
• Verifies if the configured retention period is less than the minimum required days
• Reports a vulnerability when either soft delete is disabled or retention period is too short
• Examines each blob service container in the Azure Storage Account for these misconfigurations
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.