Speaking - BSidesBUD 2026
How Can I Steal Your Data with Azure Private Endpoints
I will present this session at BSidesBUD on April 29, 2026.
BSidesBUD is an international IT security conference, which makes it the right place to look at Azure Private Endpoints from an attacker and defender perspective at the same time. Private Endpoints are often seen as a simple hardening feature, but in real environments their security depends heavily on network design, DNS resolution, routing decisions, and governance.
In this session, I will walk through how misconfigured or poorly governed Private Endpoint deployments can expose sensitive data paths, weaken isolation, or create blind spots that are easy to miss during implementation. I will also cover the practical countermeasures that help security and cloud teams reduce risk before these issues reach production.
Takeaways:
- Understand how Azure Private Endpoints behave in real network flows.
- See how DNS mistakes can turn a security control into an exposure path.
- Learn where data exfiltration and segmentation gaps can appear in Azure designs.
- Use governance and Azure Policy to enforce safer deployment patterns.