您现在的位置是:知識 >>正文
【】
知識469人已围观
简介AI researchers at Microsoft have made a huge mistake.According to a new reportfrom cloud security co ...
AI researchers at Microsoft have made a huge mistake.
According to a new reportfrom cloud security company Wiz, the Microsoft AI research team accidentally leaked 38TB of the company's private data.
38 terabytes. That's a lotof data.
The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.
Tweet may have been deleted
So, how did this happen? The report explains that Microsoft's AI team uploaded a bucket of training data containing open-source code and AI models for image recognition. Users who came across the Github repository were provided with a link from Azure, Microsoft's cloud storage service, in order to download the models.
One problem: The link that was provided by Microsoft's AI team gave visitors complete access to the entire Azure storage account. And not only could visitors view everything in the account, they could upload, overwrite, or delete files as well.
Wiz says that this occurred as a result of an Azure feature called Shared Access Signature (SAS) tokens, which is "a signed URL that grants access to Azure Storage data." The SAS token could have been set up with limitations to what file or files could be accessed. However, this particular link was configured with full access.
Adding to the potential issues, according to Wiz, is that it appears that this data has been exposed since 2020.
Wiz contacted Microsoft earlier this year, on June 22, to warn them about their discovery. Two days later, Microsoft invalidated the SAS token, closing up the issue. Microsoft carried out and completed an investigation into the potential impacts in August.
Microsoft provided TechCrunch with a statement, claiming “no customer data was exposed, and no other internal services were put at risk because of this issue.”
TopicsCybersecurityMicrosoft
Tags:
转载:欢迎各位朋友分享到网络,但转载请说明文章出处“夫榮妻貴網”。http://new.maomao321.com/news/40c58499375.html
相关文章
New Zealand designer's photo series celebrates the elegance of aging
知識Not only is age nothin’ but a number -- it can be a asset when it comes to style.。 That’ ...
【知識】
阅读更多Tracy Morgan delivers Destiny’s Child burn from Beyoncé’s womb on 'SNL'
知識Tracy Morgan popped up on Saturday Night Livein the most unexpected of places: Beyoncé's womb ...
【知識】
阅读更多Samsung Chromebook Plus review
知識What's the easiest way to make an existing gadget new and refreshing? Just add a stylus.At least tha ...
【知識】
阅读更多
热门文章
- Metallica to seek and destroy your eardrums with new album this fall
- Your dates are definitely judging you for your crappy old phone
- Indonesia's largest fleet of taxis teams up to beat ride
- Uluru looks just as stunning viewed from the International Space Station
- Tributes flow after death of former Singapore president S.R. Nathan
- You can now play Bill Gates' first PC game and run over donkeys on your iPhone, Apple Watch
最新文章
U.S. government issues warning on McDonald's recalled wearable devices
CNN and Kellyanne Conway's Twitter feud just escalated hilariously
These 36 beaches should be avoided (again) because of all the human poo
Prime Minister's Twitter circle generates debate in the Parliament
Mom discovers security cameras hacked, kids' bedroom livestreamed
Google is finally fixing a creepy Gmail security bug