An industry-wide, hardware-based security vulnerability wasdisclosed today. Keeping customers secure is always our top priority and we are taking active steps to ensure that no Azure customer is exposed to these vulnerabilities. At the time of this blog post, Microsoft has not received any information to indicate that these vulnerabilities have been used to attack Azure customers.
The majority of Azure infrastructure has already been updated to address this vulnerability. Some aspects of Azure are still being updated and require a reboot of customer VMs for the security update to take effect. Many of you have received notification in recent weeks of a planned maintenance on Azure and have already rebooted your VMs to apply the fix, and no further action by you is required.
Just want to say thanks to the Azure team for making this process as painless as possible. The planned maintenance area in the service health dashboard helped quickly identify the status of the updates, which were scheduled, and which we still needed to preemptively deploy.