• Send Us A Tip
  • Calling all Tech Writers
  • Advertise
Sunday, May 18, 2025
  • Login
  • Register
TechStory
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
TechStory
No Result
View All Result
Home Trending

Microsoft AI Team Accidentally Leaks 38TB of Confidential Corporate Data

by Sneha Singh
September 22, 2023
in Trending
Reading Time: 3 mins read
0
Microsoft
TwitterWhatsappLinkedin

In a shocking revelation that has sent ripples through the tech industry, it has recently been brought to light that the esteemed Microsoft AI research team inadvertently exposed an astonishing 38 terabytes of highly confidential company data. This alarming incident was brought to the forefront by Wiz, a reputable cloud security firm, raising serious concerns regarding the efficacy of security protocols in place at this global tech powerhouse.

You might also like

“We came close,” admits Sundar Pichai about Google’s near acquisition of Netflix

Weekly Business News: From Antfin’s exit from Paytm to Zerodha on the Nasdaq Tower

Weekly Funding News: Indian startups raised $152 Mn this week; from Groww to Hocco

This extensive data breach encompassed complete backups of computer systems belonging to two Microsoft employees, housing a veritable treasure trove of sensitive personal information. Among the compromised data were critical credentials, including passwords for a multitude of Microsoft services, confidential secret keys, and an astounding cache of over 30,000 internal Microsoft Teams messages. These messages were sourced from communication records of more than 350 Microsoft employees, thus illuminating potential security vulnerabilities within the company that are cause for deep concern.

The recent accidental exposure has sent shockwaves through the tech community and beyond, sparking serious concerns. The vast release of private and sensitive data not only casts doubt on the effectiveness of Microsoft’s data security measures but also highlights the urgent need for rigorous protocols and heightened vigilance in handling confidential information. As this incident continues to evolve, both stakeholders and the public are eagerly observing how Microsoft will respond and bolster its security infrastructure to prevent similar breaches in the future.

A Critical Security Oversight

In a recent development, the AI team at Microsoft inadvertently laid bare a wealth of training data, encompassing open-source code and AI models specifically crafted for image recognition. The episode began when users stumbled upon a Github repository, eventually leading them to a link hosted on Azure, Microsoft’s cloud storage service. The intention behind this link was to grant users access to download these AI models.

However, a glaring oversight was present in the link shared by the AI team. Shockingly, it provided unrestricted access to the entire Azure storage account. Visitors not only had the ability to view the contents of the account but also gained alarming privileges to upload, overwrite, or even delete files at their discretion. This significant security lapse was attributed to a specific feature within Azure called Shared Access Signature (SAS) tokens. These tokens essentially materialize as signed URLs, facilitating access to Azure Storage data. In this instance, the link had been configured with unrestricted access, lacking the crucial limitations that should have been in place to restrict access to specific files.

 Microsoft AI Team Accidentally Leaks 38TB of Confidential Corporate Data
Credits: Mashable

What amplifies the gravity of this situation is the fact that this data exposure has been ongoing since 2020, underscoring the prolonged vulnerability and the potential risks it poses. Cybersecurity firm Wiz, the vigilant discoverer of this vulnerability, promptly alerted Microsoft about the issue on June 22. Microsoft acted swiftly, invalidating the SAS token within a mere two days to remediate the problem. Subsequently, Microsoft conducted a thorough and meticulous investigation into the potential implications of this security lapse, concluding its findings in August.

Lessons Learned from the Microsoft Data Leak Incident

Microsoft sought to reassure the public, asserting that no customer data had been compromised and that internal services remained unaffected. Their statement, provided to TechCrunch, aimed to allay concerns surrounding this breach and affirm their commitment to security and swift response to potential threats.

Microsoft assured that no customer data was exposed and internal services remained secure despite the accidental data leak. Nevertheless, the incident raises significant concerns due to the exposure of a substantial amount of sensitive data.

This incident offers valuable lessons. Firstly, handling SAS tokens requires utmost caution, considering their potential to provide access to extensive data. Secondly, implementing effective monitoring and governance mechanisms is crucial for promptly identifying and addressing data leaks. Lastly, educating employees about best practices in data security is paramount.

Given Microsoft’s strong reputation in security, it’s likely they will enhance their data security practices in response to this incident. However, it’s essential for all organizations to acknowledge the risks associated with data leaks and take appropriate measures to mitigate them.

Tags: Cybersecuritydata leakMicrosoftMicrosoft AISAS
Tweet54SendShare15
Previous Post

We Asked Daves About Dave, Marcus and Other First-Name Money Apps

Next Post

Beyond the Resume: Leveraging Background Checks for Success in New York’s Job Market

Sneha Singh

Sneha is a skilled writer with a passion for uncovering the latest stories and breaking news. She has written for a variety of publications, covering topics ranging from politics and business to entertainment and sports.

Recommended For You

“We came close,” admits Sundar Pichai about Google’s near acquisition of Netflix

by Ishaan Negi
May 17, 2025
0
Another milestone in Sundar Pichai’s journey as AI boom gets him close to billionaire status

In a rare moment of candid reflection, Google CEO Sundar Pichai recently disclosed that the tech titan once came very close to acquiring Netflix — a move that,...

Read more

Weekly Business News: From Antfin’s exit from Paytm to Zerodha on the Nasdaq Tower

by Ishaan Negi
May 17, 2025
0
Weekly Business News: Top business updates in this week

As global politics, business strategy, and technology intersect in new ways, India is increasingly finding itself at the heart of key developments—ranging from Big Tech’s manufacturing decisions to...

Read more

Weekly Funding News: Indian startups raised $152 Mn this week; from Groww to Hocco

by Ishaan Negi
May 17, 2025
0
Weekly Startup Funding News: Indian startups raised $196 Mn this week; from Emiza to Leap

After a sharp uptick the previous week, the Indian startup funding ecosystem witnessed a dramatic pullback in momentum.

Read more
Next Post
Photo by Patrick Tomasso on Unsplash

Beyond the Resume: Leveraging Background Checks for Success in New York's Job Market

Please login to join discussion

Techstory

Tech and Business News from around the world. Follow along for latest in the world of Tech, AI, Crypto, EVs, Business Personalities and more.
reach us at [email protected]

Advertise With Us

Reach out at - [email protected]

BROWSE BY TAG

#Crypto #howto 2024 acquisition AI amazon Apple bitcoin Business China cryptocurrency e-commerce electric vehicles Elon Musk Ethereum facebook flipkart funding Gaming Google India Instagram Investment ios iPhone IPO Market Markets Meta Microsoft News NFT samsung Social Media SpaceX startup startups tech technology Tesla TikTok trend trending twitter US

© 2024 Techstory.in

No Result
View All Result
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to

© 2024 Techstory.in

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?