Benefits Of Low Conscientiousness, Articles M

Microsoft data breach exposed sensitive data of 65,000 companies Earlier this year, Microsoft, along with other technology firms, made headlines for a series of unrelated breaches as a result of cyber hacking from the Lapsus$ group. Microsoft servers have been subject to a breach that might have affected over 65,000 entities across 111 countries, according to the security research firm, SOCRadar. The biggest data breaches, hacks of 2021 | ZDNET For its part, Microsoft claimed that it had quickly secured its servers upon being notified, and that it has alerted affected customers of the potential data breach. Flame wasnt just capable of infecting machines; it could also spread itself through a network using a rogue Microsoft certificate. Successfully managing the lifecycle of data requires that you keep data for the right amount of time. Microsoft customers find themselves in the middle of a data breach situation. Microsoft has Suffered a Digital Security Breach - IDStrong Who's Hacked? Latest Data Breaches And Cyberattacks - Cybercrime Magazine The company secured the server after being notified of the leak on September 24, 2022by security researchers at threat intelligence firm SOCRadar. The tech giant has thanked SOCRadar, but its not happy with the companys blog post, claiming that it greatly exaggerates the scope of the issue and the numbers involved. Since sensitive data is everywhere, we recommend looking for a multicloud, multi-platform solution that enables you to leverage automation. This misconfiguration resulted in unauthenticated access to some business transaction data, it says. Lets look at four of the biggest challenges of sensitive data and strategies for protecting it. We take this issue very seriously and are disappointed that SOCRadar exaggerated the numbers involved in this issue even after we highlighted their error. In March, the hacker group Lapsus$ struck again, claiming to have breached Microsoft and shared screenshots taken within Azure DevOps, Microsoft's collaboration software. Per SOCRadar's analysis, these files contain customer emails, SOW documents, product offers,POC (Proof of Concept) works, partner ecosystem details, invoices, project details, customer product price list,POE documents, product orders, signed customer documents, internal comments for customers, sales strategies, and customer asset documents. (Torsten George), The conventional tools we rely on to defend corporate networks are creating gaps in network visibility and in our capabilities to secure them. Every level of an organizationfrom IT operations and red and blue teams to the board of directors could be affected by a data breach. Additionally, Microsoft had issue with the way that SOCRadar researchers handled their discovery of the breach by using a search tool to try to connect the data. While the exact number isnt clear, the issue potentially impacted over 30,000 U.S. companies, and as many as 60,000 companies worldwide. A global wave of cyberattacks and data breaches began in January 2021 after four zero-day exploits were discovered in on-premises Microsoft Exchange Servers, giving attackers full access to user emails and passwords on affected servers, administrator privileges on the server, and access to connected devices on the same network.