Researchers find open Microsoft database with 250 million support records

Jan 22 14:01 2020 Print This Article

Configuration mistakes by staff can be a huge embarrassment to organizations, defeating even the biggest IT security budget. Often these mistakes result in databases of sensitive information being left open on the internet for a lucky hacker to trip over.

The latest publicly-identified victim is Microsoft. Researchers at Comparitech, a U.K.-based site that reviews consumer IT security products said this morning they recently found five Elasticsearch servers belonging to the software giant with identical copies of nearly 250 million customer service and support exposed without password or other authentication needed for access.

The records contained logs of conversations between Microsoft support agents and customers from all over the world, spanning a 14-year period from 2005 to last December. All of the data was left accessible to anyone with a web browser, with no password or other authentication needed.

Read More

About Article Author

The IT World Blog

Since its launch in 1984, IT World Canada has become the online information resource of choice for Canadian IT professionals working in medium to large enterprises. Representing the entire spectrum of enterprise IT, they provide news and information services that aid in achieving success in the Canadian IT market. more than 75,000 IT executives and professionals – representing 70 per cent of the buying power in Canada – turn to IT World Canada for the information they trust. IT World Canada creates daily news content, produces a daily newsletter and features IT professionals who blog on topics of industry interest.

Related Items

The Rot Continues but Somewhat Less Dollar Friendly

Overview:  A new phase of the Covid-19 is at hand.  Yesterday was the first time that the number of new cases in the world surpassed the number of new cases China acknowledged.  This confirms what we have known, namely that the battle for containing it in China has been lost.  However, it was ...

In the room where it happens: An investigation of the potential of regulatory technology

Keith Black, PhD, CFA, CAIA, FDP, Managing Director of Content Strategy at CAIA Association Do you want to be in the room where it happens, when “The Smartest Guys in the Room”* are plotting their fraud and trying to prevent the demise of Enron? Look around at how lucky weRead More ...

Broadcast Panel Chair Says Canada Already Licenses News Organizations So Why Not Internet Companies?

Janet Yale, the chair of the Broadcasting and Telecommunications Legislative Review Panel, appeared earlier this week before the Standing Committee on Canadian Heritage to provide an update on the report. Her opening remarks directly addressed concerns regarding the regulation of news, claiming tha ...

Who Runs Canadian Telecom Policy Anyway?: Why the Telus Threats at the CRTC Will Backfire

The big headline story from the first week of the CRTC hearing into the wireless market was undoubtedly Telus CEO Darren Entwistle closing hours of testimony with a threat to slash investment and jobs if the Commission follows through with a mandated MVNO model. Entwistle told the CRTC: There’s b ...

BlackBerry, Microsoft and other heavy hitters drop product announcements at RSA Conference

BlackBerry, Microsoft, Proofpoint, McAfee, Palo Alto Networks and Spirion are among the companies making product announcements in San Francisco at the start of the annual RSA Conference. The conference officially kicked off today with keynote speeches. BlackBerry said it has added a new unified end ...

Kinaxis is a Buy, says Laurentian Bank

Look for supply chain SaaS company Kinaxis (Kinaxis Stock Quote, Chart, News TSX:KXS) to come out swinging with tomorrow’s fourth quarter results, says Nick Agostino, analyst for Laurentian Bank Securities, who on Friday delivered to clients an update and Q4 preview on the stock. Ottawa-based Kin ...

Cisco to release cloud-based security product management platform

Managing the many security products in an organization’s environment is one of the key problems faced by CISOs. To help with the burden Cisco Systems today announced a cloud-based management portal for all of its products called SecureX, which it says will give administrators greater visibility t ...

OTPP's Innovative Deal With New Gold

Aoyon Ashraf and Paula Sambo of Bloomberg News report Ontario Teachers' signs US$300M investment deal with New Gold:New Gold Inc. surged after forming an unusual partnership with Ontario Teachers’ Pension Plan that gives the miner US$300 million in exchange for selling a portion of the free cash ...

Is it time to sell your Pfizer stock?

Is Pfizer (Pfizer Stock Quote, Chart, News NYSE:PFE) looking interesting here? With its gains over the past couple of years effectively erased now and the stock plunging big time over February, investors might think there’s value in the pharma giant. Don’t buy it, says fund manager Gordon Reid, ...

Uncanny Valley: Being Human in the Age of AI (artificial intelligence) at the de Young museum (San Francisco, US) February 22 – October 25, 2020

So we’re still stuck in 20th century concepts about artificial intelligence (AI), eh? Sean Captain’s February 21, 2020 article (for Fast Company) about the new AI exhibit in San Francisco suggests that artists can help us revise our ideas (Note: Links have been removed), Though we’re well in ...

Finding the story behind the research: Dr. Aditi Khandelwal and the Canadian Blood Services Lay Science Writing Competition

Elizabeth Benner, Health, Medicine & Veterinary Sciences editor Many Canadians are familiar with the Canadian Blood Services (CBS), a Canadian healthcare charity associated with blood drives around the country (except Quebec). You may know about the CBS because you have donated blood or recognize it ...

The Experience Economy – It’s More Than The “Product”

“The experience of the product is bigger than the product itself,” said Donald Chesnut, who became Mastercard Inc.’s first chief experience officer in 2019. “It’s everything around it. How well does it work? How does the product feel?” Some 89% of companies employed a chief experience ...