AI researchers at Microsoft have made a huge mistake.
According to a new reportfrom cloud security company Wiz, the Microsoft AI research team accidentally leaked 38TB of the company's private data.
38 terabytes. That's a lotof data.
The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.
Tweet may have been deleted
So, how did this happen? The report explains that Microsoft's AI team uploaded a bucket of training data containing open-source code and AI models for image recognition. Users who came across the Github repository were provided with a link from Azure, Microsoft's cloud storage service, in order to download the models.
One problem: The link that was provided by Microsoft's AI team gave visitors complete access to the entire Azure storage account. And not only could visitors view everything in the account, they could upload, overwrite, or delete files as well.
Wiz says that this occurred as a result of an Azure feature called Shared Access Signature (SAS) tokens, which is "a signed URL that grants access to Azure Storage data." The SAS token could have been set up with limitations to what file or files could be accessed. However, this particular link was configured with full access.
Adding to the potential issues, according to Wiz, is that it appears that this data has been exposed since 2020.
Wiz contacted Microsoft earlier this year, on June 22, to warn them about their discovery. Two days later, Microsoft invalidated the SAS token, closing up the issue. Microsoft carried out and completed an investigation into the potential impacts in August.
Microsoft provided TechCrunch with a statement, claiming “no customer data was exposed, and no other internal services were put at risk because of this issue.”
TopicsCybersecurityMicrosoft
(责任编辑:百科)
The five guys who climbed Australia's highest mountain, in swimwear
Guy Fieri loves John Krasinski and 'The Office' as much as you do
Let these Instagram accounts tell you what dog, sandwich, and Guy Fieri you are
Everyone's dreaming of walking down the aisle after quarantine in this memeMashReads Podcast: What makes a good summer read?5 people Tim Cook calls for advice on running the biggest company in the world
It's only fitting that the leader of the biggest company in the world has a pretty impressive list o
...[详细]Elon Musk gets a $770 million award as Tesla hits goals
Remember Elon Musk's wild, all-or-nothing Tesla compensation plan? Well, it's certainly not going to
...[详细]Uber Boat takes over London commuter ferry for water rides
UPDATE: Aug. 3, 2020, 10:03 a.m. BST Uber Boat has launched in London, setting sail on the River Tha
...[详细]
Megapixels aren't everything, as everyone who tried out the painfully slow autofocus on Samsung's to
...[详细]When Honda revealed its stunning and grandparent-scaring Civic Hatchback Prototype earlier this year
...[详细]YouTube launches fact check panels in the U.S.
Anyone who has ever fallen into a YouTube conspiracy theory wormhole just got thrown a lifeline.YouT
...[详细]
Do you trust companies like Facebook to accurately and completely tell you how, and to what extent,
...[详细]2021 Oscars pushed back due to coronavirus
More changes are coming to next year's Academy Awards.The Academy of Motion Picture Arts and Science
...[详细]You will love/hate Cards Against Humanity's new fortune cookies
If you've ever ordered Cards Against Humanity from the delightfully corrupt board game's website, yo
...[详细]'The Simpsons' came eerily close to predicting the coronavirus and murder hornets
Just add coronavirus and murder hornets to the long list of things The Simpsons predicted.OK, so lik
...[详细]Michael Phelps says goodbye to the pool with Olympic gold
Google Search makes it easier to find what you're looking for
