Microsoft accidentally exposed 250 million online customer service records

Continued to be a security scandal involving one of the world's largest technology corporations - signaling a turbulent year in global security. Microsoft recently confirmed that an archive of customer support records and customer service data leaked online from the end of 2019, affecting millions of the company's customers.

Specifically, this security scandal was first discovered by a group of freelance security researchers, led by renowned cyber security researcher Bob Diachenko, which involved a database containing 250 million records from Microsoft customer service and support logs were leaked online - a whopping number.

The incident was later confirmed by Redmond, saying the database was inadvertently exposed due to a misconfiguration of the security rules, which were caused by changes. was implemented by Microsoft experts on December 5, 2019. In other words, this incident stems from a subjective error of the Microsoft engineering team itself.

The leaked database then went under the radar of the BinaryEdge search engine on December 28. The Diachenko team discovered it on December 29 and immediately reported the situation to Microsoft. Although the problem occurred during the Christmas holiday, Microsoft quickly resolved it. The repository was secured again on December 31, right before the New Year.

Microsoft accidentally exposed 250 million online customer service records Picture 1

Most of the data stored in logs is conversations between customers and the Microsoft support team, and they have been reprocessed in accordance with standard company processes. However, there is also a lot of data stored in plain text, including information such as email addresses and support agents, IP addresses, locations, numbers and internal notes. secret.

According to Diachenko's group, this information can be misused by malicious agents to impersonate Microsoft support agents to deceive customers. However, up to now, Microsoft confirmed that it has not found any evidence that the leaked data was used for malicious purposes.

In a written summary of the incident, Microsoft has pledged not to let the same incident occur again, by deploying a new audit process, including checking the current network security rules. In addition, additional warnings will be detected when misconfiguration is detected and active regulatory actions are performed. Redmond Company is currently sending notices to customers affected by this incident.