Microsoft Customer Service Records Exposed Via Misconfigured Servers

February 20, 2022 Post a Comment

As is somewhat typical with these exposures the database was. Microsoft Microsoft accidentally exposed 250 million customer service and support records online.

250 Million Microsoft Customer Service Support Records Exposed

Microsoft on Wednesday disclosed that some of its customer support case information was exposed last month due to misconfigured security settings in an Azure-hosted database.

Microsoft customer service records exposed via misconfigured servers. Microsoft exposed 250 million customer support records on five Elasticsearch servers that had misconfigured Azure security rules a Comparitech security research team found. Today we concluded an investigation into a misconfiguration of an internal customer support database used for Microsoft support case analytics. Changes made to the analytics databases network security group on December 5 2019 contained misconfigured security rules that enabled exposure of the data.

5 which it now fixed. Misconfigured Microsoft cloud databases containing 14 years of customer support logs exposed 250 million records to the open internet for 25 days. The account info dates back as far as 2005 and is.

250 Million Microsoft Customer Support Records Exposed Online. 01242020 A misconfiguration applied to five Elasticsearch database servers in December 2019 led to the exposure of 250 million customer support records for software maker Microsoft. Microsoft has admitted to a security blunder of misconfiguring a customer service and support database that exposed 14 years of customer service and support data dating back to 2005 accessible to anyone with a web browser requiring no authentication at all.

Microsoft has disclosed a security breach where an internal customer support database was exposed online last month. The mass of Microsoft customer service records In a statement posted to the company blog on January 22 Microsoft revealed that they uncovered misconfigured security rules in a database on December 29. Microsoft in a recent blog post has disclosed details regarding a security breach that took place in December 2019.

The inadvertent data leak occurred due to the misconfiguration of a database that the company used for maintaining customer support information. Microsoft has officially acknowledged the data leak and has taken measures to stop the same. 23 Jan 2020 - 1258PM More than 250 million customer service and support records were exposed by Microsoft over a two-day period in December 2019 due to a server misconfiguration.

Microsoft blamed the accidental server exposure on misconfigured Azure security rules it deployed on Dec. The software giant Wednesday admitted it had exposed 250 million customer support records on five Elasticsearch servers. Microsoft disclosed a security breach caused by a misconfigured internal customer support database that led to the accidental exposure of roughly 250 million customer support and service records.

Microsoft became the latest organization to accidentally expose private data on the web. It was an internal company database used for analytics apparently not normally accessible to the outside world. Microsoft briefly exposed call center data on almost 250 million customers via several unsecured cloud servers late last year according to researchers.

Microsoft today admitted a security incident that exposed nearly 250 million Customer Service and Support CSS records on the Internet due to a misconfigured server containing logs of conversations between its support team and customers. Microsoft Exposed 250 Million Customer Service Records Mistakenly. While the investigation found no malicious use and although most customers did not have personally identifiable information.

Microsoft has been in the news for mostly the wrong. Bob Diachenko spotted the major privacy snafu a day after databases across five Elasticsearch servers were indexed by the BinaryEdge search engine on December 28. A new report reveals that 250 million Microsoft customer records spanning 14 years have been exposed online without password protection.

According to the blog post the error was due to the misconfiguration of an internal customer support database which was used to support case analytics. The software giant provided further details on the security breach in a blog. Todaydiscloseda data breach that exposed 250 million customer records via a misconfigured Elasticsearch database.

MSRC By MSRC Team January 22 2020. If you have ever contacted Microsoft for support in the past 14 years your technical query along with some personally identifiable information might have been compromised. Microsoft exposed approximately 250 million customer service records due to what the company called a misconfiguration of an internal customer support database used for tracking support cases.

Using Microsoft 365 Defender To Protect Against Solorigate Microsoft Security

Owasp 5 Security Misconfiguration Hardening Your Asp Net App