250 million Microsoft customer records, going back 14 years have been exposed online without password protection, a new report revealed.
Security research team at Comparitech uncovered no less than 5 servers having these same 250 million records. The records were customer service conversations between Microsoft support agents and customers from all around the world.
The records are from 2005 till December 2019. All data was accessible to anyone without any authentication.
The data appeared to be customers email addresses, IP addresses, locations, support claim cases, and few more.
So how was the Microsoft data exposure discovered, and how long did it take to lock down?
On December 28, 2019, threat intelligence search engine BinaryEdge discovered the database. The second day, the head of the security research team at Comparitech immediately reported the tread to Microsoft and within 24 hours, all servers were secured.
Microsoft Security Centre issued a statement thanking Comparitech, and reassuring customers that they are taking this matter seriously and holding themselves accountable to prevent any future reoccurrence.
Follow us on our Social Media platforms to know more about the latest technology world news.
Twitter: twitter.com/softimpacts
Instagram: instagram.com/softimpact/
LinkedIn: linkedin.com/company/softimpact/
Facebook: facebook.com/softimpact/