 |
| Microsoft server breach leaks data of 65,000 global companies |
According to security research firm SOCRadar, a Microsoft server was hacked, exposing the data of more than 65,000 companies in 111 countries.
SOCRadar said it notified Microsoft of its findings, detailing a misconfigured Azure Blob storage server breach that may have exposed approximately 2.4 terabytes of sensitive data including: names, phone numbers, email and mail addresses — and containing company names and dates. on private information. Information about attachments such as proof of concept documents, sales dates, product orders, and more.
After being notified of the breach on September 24, 2022, Microsoft released a statement this week saying that it had secured the compromised endpoint "and is now accessible only with required authentication" and that the investigation "found no evidence that the customer's account or account was" a system hack. The company also said it has contacted customers affected by the breach.
For its part, SOCRadar responded by making the BlueBleed search portal available to Microsoft customers who might have been concerned about being affected by the data breach.
According to Bleeping Computer, the security firm found that its research was able to link 65,000 exposed entities to file data created between 2017 and 2022, though Microsoft responded quickly to fix the misconfigured servers.
Microsoft was unhappy with SOCRadar's handling of the breach, saying that encouraging companies to use its search tool "does not serve the best interests of protecting customers' privacy or security and may expose them to unnecessary risks."
However, the research firm insists it does not circumvent privacy protocols or withhold leaked information.
"No data was uploaded, we ran some through our drive, but - as Microsoft promised - no data was shared and all data sent was deleted," SOCRadar Vice President of Research, Ansar Shukr, told Bleeping Computer. He has our system."
Shukr added, “If they want to see the raw data, we redirect all customers to the Microsoft 365 admin center alerts. Metadata (company name, domain name, email) can be searched for. Due to constant pressure from Microsoft, we also had to remove Our status page.
It is important to note that Microsoft has not released detailed statistics about the violations encountered.