Recently Microsoft failed to configure the security of one of its servers. This carelessness left some of its valuable customer data exposed to hackers.
Microsoft is left embarrassed by this botched security action toward its reputed customers.
A Cybersecurity group SOCRadar informed us about this unfortunate accident with Microsoft, in September. They gave info that a group of files from 2017 to August 2022 had been leaked in this hack.
SOCRadar has denominated this event as “Blue Bleed” and has also developed a website where companies associated with Microsoft can find out if their concerned data has been affected or not.
SOCRadar published a list of business activities that have been exposed:
- Name of customers
- Their personal as well as organizational email addresses
- Contents of the email
- Organization names
- Client Phone numbers
Microsoft even warned that the exposed data might include business files of customers and Microsoft or any of its (Microsoft’s) certified business partners.
SOCRadar further asserts that susceptible data of 65000 firms and organizations in around 111 nations have been affected due to this misconducted server, which was left unattended by Microsoft.
Microsoft has humbly shown gratitude towards the SOCRadar for informing them about this hazardous data breach beforehand. While it hasn’t shared the vicinity of the cyber accident but has blamed the researchers of SOCRadar that they have greatly exaggerated the issue over the internet.
In their own set of explanations Microsoft published a few days ago on its official site, it claims that “their own researchers have done the comprehensive investigation of the data available on SOCRadar’s site. While some of them are correct and some data sets are mere duplicate information having more than one connection to same users, emails and projects.” Microsoft further says, “we have taken this issue very seriously on being informed by SOCRadar but it is very disappointing that they have simply amplified the scope of the breach, even when we have high-pointed on their erroneous data.”
Whereas in return to the claims of Microsoft SOCRadar’s BlueBleed research team has counter-attacked them saying, it’s not good for a reputed organization like Microsoft to distort the Client’s data leaving it exposed to be hacked.
While Microsoft didn’t remain silent, arguing that any Security group should first verify the website users before letting them enter their domain name and search for the data exposed.
Now it’s obviously a good thing that all these exposed servers have been mended but what about the leaked data that the hackers have gained? It’s very unfortunate that big cakes like Microsoft are so much careless about the security of their Customer’s data. It has been in the news that for a long time Microsoft Azure Blob Storage cloud bucket remains accessible to unauthorized personnel; which is very embarrassing on the part of Microsoft.
For more such technical news updates stay tuned to Cybermetrics.eu.
