Microsoft admits 250 million Customer Support records exposed online
By MYBRANDBOOK
Microsoft has admitted that a security incident has exposed nearly 250 million "Customer Service and Support" (CSS) records on the Internet. It is due to a misconfigured server containing logs of conversations between its support team and customers.
Cybersecurity researcher Bob Diachenko has spotted the unprotected database and reported to Microsoft. The logs contained records from the year 2005 to December 2019.
In a blog post, Microsoft confirmed that it is due to misconfigured security rules added to the server in question on December 5, 2019, enabled exposure of the data, which remained the same until engineers remediated the configuration on December 31, 2019.
Microsoft also said that the database was redacted using automated tools to remove the personally identifiable information of most customers, except in some scenarios where the information was not the standard format.
"Our investigation confirmed that the vast majority of records were cleared of personal information in accordance with our standard practices," Microsoft said.
However, according to Diachenko, many records in the leaked database contained readable data on customers, including their email addresses, IP addresses, Locations, Descriptions of CSS claims and cases, Microsoft support agent emails, Case numbers, resolutions, and remarks, Internal notes marked as "confidential."
"This issue was specific to an internal database used for support case analytics and does not represent an exposure of our commercial cloud services," Microsoft said.
As a result of this incident, the company said it began notifying impacted customers whose data was present in the exposed Customer Service and Support database.
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Paytm brings UPI Lite Wallet for low-value transactions
Paytm’s parent company One97 Communications (OCL) is emphasizing upon UP...
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
TAC SECURITY SOLUTIONS
QUICK HEAL TECHNOLOGIES PVT. Ltd.
JUVAS SOLUTIONS PVT. LTD.
SAMSUNG INDIA ELECTRONICS PVT. LTD.
Technology Icons Of India 2023: Rajiv Srivastava
Rajiv Srivastava is the Managing Director of Redington Group. With 35 ...
Technology Icons Of India 2023: Josh Foulger
Josh is the Country Head of India and MD of Bharat FIH Ltd (A Foxconn ...
Technology Icons Of India 2023: Rajeev Chandrasekhar
Rajeev Chandrasekhar is the Union Minister of State for Electronics an...
INDIANOIL helps reach precious petroleum fuels to every nook and corner of the country
IndianOil, a diversified, integrated energy major with presence in alm...
PGCIL transforming India with its wide power transmission network
Engaged in power transmission, POWERGRID or PGCIL is a stated owned In...
EESL encouraging e-mobility adoption across India
Energy Efficiency Services Limited (EESL) is a Super Energy Service Co...
SAVEX TECHNOLOGIES PVT. LTD.
Savex Technologies is the 3rd largest Information & Communication Tec...
B D SOFTWARE
BD Software is the distributor of IT security solutions in India. The ...
FORTUNE MARKETING PVT. LTD.
Delhi based Fortune Marketing, An ISO 9001:2008 company, distributes ...