Microsoft announces the breach of 250 million records of the company’s support and customer service


Thursday, January 23, 2020 10:12 PM

Microsoft announced a security breach of its customer support data, which occurred in last December, and the company indicated that “the internal customer support database that was storing anonymous user analyzes had been detected by mistake, and it remained without appropriate protection with a password Between December 5 and 31, 2019, “Russia Network reported today.

The company explained that it “began to alert affected clients of the mentioned problem, although it did not find any evidence of harmful uses of their data, and since it was informed of the matter, it took all necessary measures to avoid the consequences of the problem, and began to revise the data to remove the personal information of customers as part of the standard operating procedures.”

It should be noted that Microsoft learned of this problem from the researcher and expert in information security, Bob Dyachenko, who works in Security Discovery.

For his part, Dyachenko explained that the aforementioned database for Microsoft included 5 Elasticsearch servers, used to simplify searches for users, and those servers contained information related to users’ email addresses, IP addresses, and details of customer support status, but they did not contain Personal information about users.

Source: the seventh day


Please enter your comment!
Please enter your name here