Recently Microsoft revealed a data leak last December.
In a blog post published by the company said that an internal customer support database, which stores anonymous user data, was exposed between December 5 and December 31.
The database leak was detected and reported to Microsoft by Bob Diachenko, a Security Discovery security researcher.
According to Diachenko, the customer support database that was exposed online consists of a cluster of five server Elasticsearch, one technology used to simplify functions search. All five hosts store the same data.
The researcher also said that Microsoft resolved the issue immediately, despite the fact that it was New Year's Eve.
The servers contained about 250 million entries, with information such as email addresses, IP addresses, and support. Microsoft said that most of the files did not contain any personal user information.
However, in cases where users submitted support requests, using non-standard formatted data such as ("surname @ emaildomain com" instead of "firstname.lastname@example.org"), they remained in the exposed database.
For these users, the company started sending alerts, which also inform them that it was not detected malicious use of their data.
According to Microsoft, the leak of the database was the result of poorly regulated security rules. Azurebut which have now been corrected. As Microsoft stated, now:
- The internal network security rules established for internal resources are checked.
- The range of mechanisms that detect misleading variants in security rules is broadened.
- Additional alerts are added to service groups when incorrect security configuration is detected.
- Additional processing automation is applied.