Home Internet Microsoft data breach exposes 250 million customers data

Microsoft data breach exposes 250 million customers data

Microsoft confessed about the data breaching in the internal customer support database which exposed 250 million customer service records. The database is used for tracking support cases and involves the conversations between support agents of Microsoft and customers from around the world. All these customer data was available to anyone who has a browser and did not need any authentication or passwords.

According to Ann Johnson, the Vice President, Cyber Security solutions group, Microsoft, “ While the investigation found no malicious use, and although most customers did not have personally identifiable information exposed, we want to be transparent about this incident with all customers and reassure them that we are taking it very seriously and hold ourselves accountable”.

It was found in the investigation by Microsoft that the exposure of this data was due to the change in the network security database which was introduced on December 5th 2019 and contained misconfigured security rules.

READ  The worlds first C mask that connects to smartphones invented by Japanese company

Microsoft data breach exposes 250 million customers data
Microsoft data breach exposes 250 million customers data

“This issue was specific to an internal database used for support case analytics and does not represent an exposure of our commercial cloud services”, said Microsoft. They also said that the engineers had remediated the configuration and all unauthorised access ha been prevented by restricting the database on 31st December 2019.

The issue was first reported by Bob Diachenko and Microsoft later thanked him for helping fix the issue. “We want to sincerely apologise and reassure our customers that we are taking it seriously and working diligently to learn and take action to prevent any future reoccurrence,” said Microsoft.

READ  The worlds first C mask that connects to smartphones invented by Japanese company

“I immediately reported this to Microsoft and within 24 hours all servers were secured. I applaud the MS support team for responsiveness and quick turnaround on this despite New Year’s Eve.” Says Diachenko.

Although the company said that there is nothing to worry about, the records included details like the email address of customers, IP addresses, locations, Microsoft support agents emails etc. along with internal notes marked ‘confidential’.

READ  SONY TO CHANGE IT’S NAME AFTER 60 YEARS

The researchers say that the scammers, if they have attained the data before the issue was fixed, then they could use it to exploit or impersonate a real Microsoft employee.

“Microsoft customers and Windows users should be on the lookout for such scams via phone and email. Remember that Microsoft never proactively reaches out to users to solve their tech problems” the security team said.

This was not the first time Microsoft lost data security. Similar issues had happened in 2013 and in the beginning of 2019. Hackers compromised the account of a support agent to access contents from some user.

Must Check:

Dixit Dhinakaranhttp://Morningtick.com
Dixit is the editor of Morning Tick. He is a passionate digital marketer & a tech enthusiast. In his free time, he enjoys spending time with friends, reading books and traveling.

Stay Connected

16,985FansLike
2,458FollowersFollow
61,453SubscribersSubscribe

Must Read

The worlds first C mask that connects to smartphones invented by Japanese company

A Japanese start-up called Donut Robotics has developed a smart mask called the C mask, that can connect with your smartphone while...

SONY TO CHANGE IT’S NAME AFTER 60 YEARS

Sony, which is one of the most common names in the consumer electronics market worldwide, has decided to modify its brand name...

Xiaomi launches Mi TV LUX 65-Inch OLED with 120Hz refresh rate and HDR10+

Xiaomi launches their new smart TV, powered with quad-core processor with a black back panel and a wall mounting support. The new...

Hyundai Venue to get the clutchless manual transmission

Hyundai has announced that they are introducing a new clutchless manual transmission in their new Venue Compact SUV. It is called the...

Related News

READ  SONY TO CHANGE IT’S NAME AFTER 60 YEARS

The worlds first C mask that connects to smartphones invented by Japanese company

A Japanese start-up called Donut Robotics has developed a smart mask called the C mask, that can connect with your smartphone while...

SONY TO CHANGE IT’S NAME AFTER 60 YEARS

Sony, which is one of the most common names in the consumer electronics market worldwide, has decided to modify its brand name...

Xiaomi launches Mi TV LUX 65-Inch OLED with 120Hz refresh rate and HDR10+

Xiaomi launches their new smart TV, powered with quad-core processor with a black back panel and a wall mounting support. The new...

Hyundai Venue to get the clutchless manual transmission

Hyundai has announced that they are introducing a new clutchless manual transmission in their new Venue Compact SUV. It is called the...