Far from 'micro': Tens of thousands of users and companies around world affected by Microsoft leak
Tens of thousands of companies and their employees around the world suffered as a result of a data leak from one of Microsoft's servers. Due to improper server configurations, anyone could access the 2.4 terabytes of user information stored on the server over the Internet.
What kind of information was stored on the server?
According to Bleepingcomputer, the information on the server included names, addresses and email content, company names and phone numbers, as well as files related to business between customers and Microsoft or an authorized company partner.
According to SOCRadar, which has the BlueBleed data leak search portal, the Microsoft server leak allegedly affected data from 65,000 organizations and users in 111 countries. The files stored on the server were dated from 2017 to August 2022.
SOCRadar claims that 2.4 TB of data containing sensitive information was discovered on the Microsoft server: more than 335,000 emails, 133,000 projects and unprotected data from 548,000 users.
The discovered files include customer emails, SOW documents, product proposals, POC (Proof of Concept), partner ecosystem details, invoices, project details, customer product price lists, POE documents, product orders, signed documents, sales strategies and customer asset documents.
SOCRadar experts warn that attackers who gain access to such information can use it for extortion, blackmail, creating some social engineering tactics, or simply selling the information to the highest bidder on the darknet and Telegram channels.
Is it not all that scary?
Microsoft itself says that the company's investigation found no indication that customer accounts or systems on the vulnerable server were indeed compromised.
Moreover, the company claims that SOCRadar grossly exaggerated the scope of the problem when referring to 65,000 affected companies. According to the company, data analysis shows duplicate information with multiple links to the same emails, projects and users. However, Microsoft did not give its figure.
The company added that the leak was not related to any security vulnerability - it was caused solely by a server misconfiguration.
- Related News
- iPhone users are advised to disable iMessage: What risks are hidden in it?
- Why it might not be a good idea to close background apps on Android?
- What signs can indicate presence of malicious applications in your smartphone?
- How to recognize fake documents on the Internet?
- How to prevent viruses from infecting your smartphone?
- What signs can point at smartphone being wiretapped?
- Most read
month
week
day
- iPhone users are advised to disable iMessage: What risks are hidden in it? 1386
- New Macs based M4 chip will get up to 512 GB of integrated memory, M4 is expected to be released in late 2024 1124
- Problems with Android 15: NFC contactless payments no longer work on smartphones with updated operating systems 1068
- Pavel Durov gives interview to Tucker Carlson: From 3-hour interview, less than hour appears in final version 939
- What are the best selling smartphones in the world? 858
- Key Google Pixel feature will soon be available on iPhone as well 748
- AMD Ryzen 7 processor, 24 GB of RAM and only $550: Mechrevo presents inexpensive and powerful laptop (photo) 731
- Wildberries Travel service is already available for Armenia and other CIS countries 730
- The 5 most controversial buildings ever built: Bold design or complete failure? (photo) 729
- Black Shark smart ring from Xiaomi to have interesting characteristics and phenomenal autonomy: 180 days of operation without recharging (photo) 694
- Archive