Network misconfigurations

Azure Network Security Group allows unrestricted NetBIOS traffic from the Internet

Platform(s)

Description

NetBIOS is an acronym for Network Basic Input/Output System. It provides services related to the session layer of the OSI model allowing applications on separate computers to communicate over a local area network. There is a rule configured in {AzureNetworkSecurityGroup} network security group, that allows all incoming NetBIOS traffic from the Internet. In order to keep security best practices and decrease the risk for malicious activities, you should restrict access to be only from allowed IP addresses.