According to security research firm SOCRadar, Microsoft’s servers suffered a breach that may have affected more than 65,000 devices in 111 countries.
SOCRadar claims to have shared its findings with Microsoft, which describe that a misconfigured Azure Blob Storage was compromised and may have revealed approx. 2.4 TB of privileged dataincluding names, phone numbers, email addresses, company names, and attachments that contain company proprietary information, such as proof-of-concept documents, sales data, product orders, among other information.
After being notified of the breach on September 24, 2022, Microsoft released a statement indicating that it had secured endpoint affected, which is not “now only available with required approval“and that an investigation”found no evidence that customer accounts or systems were compromised“.
The company also said it was contacting customers affected by the breach directly.
However, SOCRadar has also responded by making its BlueBleed search portal available to Microsoft customers who may fear they may have been affected by the leak. The security firm noted that while Microsoft was able to take quick steps to repair the misconfigured server, its research linked the 65,000 devices discovered to a data file compiled between 2017 and 20,222, according to Bleeping Computer.
A mistake that raises questions
Microsoft was not happy with SOCRadar’s handling of the breach, saying that encouraging devices to use its search tool “is not in the best interest of ensuring the privacy or security of customers and potentially exposes them to unnecessary risksThe research firm insists it has not breached confidentiality protocols in its work and none of the information it disclosed has been kept private.
“No data has been downloaded. Some data has been crawled by our engine, but as we promised Microsoft, no data has been shared so far and all this crawled data has been removed from our systems“, Ensar Şeker, vice president of research and CISO of SOCRadar, told BleepingComputer.
Microsoft itself did not release detailed statistics about the data breach.