时间:2025-04-03 10:02:29 来源:网络整理编辑:焦點
AI researchers at Microsoft have made a huge mistake.According to a new reportfrom cloud security co
AI researchers at Microsoft have made a huge mistake.
According to a new reportfrom cloud security company Wiz, the Microsoft AI research team accidentally leaked 38TB of the company's private data.
38 terabytes. That's a lotof data.
The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.
Tweet may have been deleted
So, how did this happen? The report explains that Microsoft's AI team uploaded a bucket of training data containing open-source code and AI models for image recognition. Users who came across the Github repository were provided with a link from Azure, Microsoft's cloud storage service, in order to download the models.
One problem: The link that was provided by Microsoft's AI team gave visitors complete access to the entire Azure storage account. And not only could visitors view everything in the account, they could upload, overwrite, or delete files as well.
Wiz says that this occurred as a result of an Azure feature called Shared Access Signature (SAS) tokens, which is "a signed URL that grants access to Azure Storage data." The SAS token could have been set up with limitations to what file or files could be accessed. However, this particular link was configured with full access.
Adding to the potential issues, according to Wiz, is that it appears that this data has been exposed since 2020.
Wiz contacted Microsoft earlier this year, on June 22, to warn them about their discovery. Two days later, Microsoft invalidated the SAS token, closing up the issue. Microsoft carried out and completed an investigation into the potential impacts in August.
Microsoft provided TechCrunch with a statement, claiming “no customer data was exposed, and no other internal services were put at risk because of this issue.”
TopicsCybersecurityMicrosoft
Metallica to seek and destroy your eardrums with new album this fall2025-04-03 09:25
持續低迷!C羅3次射門無一命中 禁區內僅1次觸球2025-04-03 09:10
範迪克 :荷蘭下半場表現可恥 攻守失衡葬送好局2025-04-03 09:04
範迪克 :荷蘭下半場表現可恥 攻守失衡葬送好局2025-04-03 08:41
Hiddleswift finally followed each other on Instagram after 3 excruciating days2025-04-03 08:23
世界杯32強已經確定9席 :西班牙塞爾維亞新晉撞線2025-04-03 08:21
李鐵或重新評估國足隊員能力 教練組最近分別同部分隊員溝通2025-04-03 07:46
C羅千古奇冤?首回合絕殺被誤吹 否則已進世界杯2025-04-03 07:40
How Hyperloop One went off the rails2025-04-03 07:26
曝已有中超球隊與歸化國腳進行接觸 高昂薪水成最大難題2025-04-03 07:16
Dressage horse dancing to 'Smooth' by Santana wins gold for chillest horse2025-04-03 09:54
國足全員已從遺憾中走出 訓練場掛上橫幅:王者永不放棄2025-04-03 09:27
挖前東家 !記者:帕拉蒂奇有意為熱刺引進麥肯尼2025-04-03 09:17
強勢出線!法國平隊史世預賽紀錄 64年來最大比分2025-04-03 08:48
Olympian celebrates by ordering an intimidating amount of McDonald's2025-04-03 08:18
世界杯32強已確定6席 :德法巴比領銜 丹麥+卡塔爾2025-04-03 08:17
大連人抗疫海報:我們的主場再迎挑戰 勝利終歸大連2025-04-03 08:06
魯梅尼格:穆裏尼奧曾示好拜仁 我們最終選了納帥2025-04-03 08:00
Here's what 'Game of Thrones' actors get up to between takes2025-04-03 07:34
中超舊將閃耀巴甲賽場 傲骨世界波格德斯傳射建功2025-04-03 07:27