web analytics
Home » Technology » Microsoft » Microsoft Security Researchers Exposed 38TB Of Internal Data Accidentally

Microsoft Security Researchers Exposed 38TB Of Internal Data Accidentally

1 year ago Yasir Zeb
chronicle

Microsoft is under particular scrutiny when it comes to AI. Now the company’s researchers have made an unpleasant mistake. An unintentional entry in the Microsoft AI repository on GitHub had exposed 38 TB of internal data.

Microsoft accidentally reveals internal data

At regular intervals, Microsoft’s AI research department makes its training data public on GitHub under an open-source license. As security researchers noticed, there was recently an error in this release that was probably caused by careless Microsoft employees.

As WizResearch writes, Microsoft also disclosed a disk backup in the data that contained confidential data, private keys, passwords, and over 30,000 internal Microsoft Teams messages. The data was not directly part of the Github storage; rather, Microsoft employees had “forgotten” their SAS (Shared Access Signature) tokens from the Azure Storage accounts among the data.

The security researchers informed Microsoft of their discovery on June 22nd, triggering an internal investigation. As Microsoft recently announced, this review showed that no customer data was disclosed. Furthermore, no evidence of threats to internal services could be identified. Access that was possible via the tokens was closed on June 24th.

GitHub responds

Microsoft has actually integrated a mechanism into GitHub that is intended to prevent the disclosure of login credentials and other secrets in plain text by scanning submitted open-source code. As the company announces, this detection has now been extended to all SAS tokens “that may have excessive expiry times or permissions.”

Last but not least, the incident is being used as an opportunity to examine all public repositories in Microsoft-owned or affiliated organizations and accounts for the possible disclosure of additional SAS tokens.

Tags:

More Stories

Microsoft Revives the MSN Brand with New Logo and Renewed Focus

3 days ago Yasir Zeb

New Microsoft update process is 45% faster

3 weeks ago Yasir Zeb

Microsoft Update adds new account manager to the start menu

3 weeks ago Amit Gohar

Today’s Latest

Stalker 2 Should Have These System Requirements

2 days ago Research Snipers

Red Magic 10 Pro Gaming Phone Comes Without Front Camera Hole

2 days ago Amit Gohar
Pixel 8a

Pixel Devices Get Charging Limit In Android Update

2 days ago Alexia Hope

.NET 9 is Now Available Microsoft Announces

2 days ago Research Snipers

Unlimited Data Plans Verizon In The U.S.

2 days ago Research Snipers

Samsung Set to Launch 83-Inch QD-OLED TVs in 2025, but Panel Variability Persists

3 days ago Research Snipers

Disassembling Ryzen 7 9800X3D Reveals Detailed Views of AMD’s New Gaming Powerhouse

3 days ago Research Snipers
automation

Key Challenges in RPA Implementation and How to Overcome Them

3 days ago Research Snipers

Microsoft Revives the MSN Brand with New Logo and Renewed Focus

3 days ago Yasir Zeb

Apple Releases Third Developer Beta of iOS 18.2: New Features and Updates

3 days ago Yasir Zeb