时间:2025-04-02 15:38:29 来源:网络整理编辑:焦點
AI researchers at Microsoft have made a huge mistake.According to a new reportfrom cloud security co
AI researchers at Microsoft have made a huge mistake.
According to a new reportfrom cloud security company Wiz, the Microsoft AI research team accidentally leaked 38TB of the company's private data.
38 terabytes. That's a lotof data.
The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.
Tweet may have been deleted
So, how did this happen? The report explains that Microsoft's AI team uploaded a bucket of training data containing open-source code and AI models for image recognition. Users who came across the Github repository were provided with a link from Azure, Microsoft's cloud storage service, in order to download the models.
One problem: The link that was provided by Microsoft's AI team gave visitors complete access to the entire Azure storage account. And not only could visitors view everything in the account, they could upload, overwrite, or delete files as well.
Wiz says that this occurred as a result of an Azure feature called Shared Access Signature (SAS) tokens, which is "a signed URL that grants access to Azure Storage data." The SAS token could have been set up with limitations to what file or files could be accessed. However, this particular link was configured with full access.
Adding to the potential issues, according to Wiz, is that it appears that this data has been exposed since 2020.
Wiz contacted Microsoft earlier this year, on June 22, to warn them about their discovery. Two days later, Microsoft invalidated the SAS token, closing up the issue. Microsoft carried out and completed an investigation into the potential impacts in August.
Microsoft provided TechCrunch with a statement, claiming “no customer data was exposed, and no other internal services were put at risk because of this issue.”
TopicsCybersecurityMicrosoft
Give your kitchen sponge a rest on this adorable bed2025-04-02 15:37
常用計時工具有哪些2025-04-02 15:31
吃甲魚是什麽梗2025-04-02 15:05
餷子怎麽炒2025-04-02 15:04
What brands need to know about virtual reality2025-04-02 15:02
借你吉吉什麽梗2025-04-02 14:47
開始胃疼是什麽梗2025-04-02 14:29
普通卻自信是什麽梗2025-04-02 14:11
New Zealand designer's photo series celebrates the elegance of aging2025-04-02 13:36
德勝大大是什麽梗2025-04-02 13:29
Snapchat is about to explode in popularity, report says2025-04-02 15:31
蓮藕七孔和九孔的區別2025-04-02 14:42
什麽食物對腦梗有好處2025-04-02 14:26
燙麵炸糕最正宗配方2025-04-02 14:14
Tyler, the Creator helped Frank Ocean celebrate 'Blonde' release in a delicious way2025-04-02 14:11
餷子怎麽炒2025-04-02 14:05
運動出汗有什麽好處2025-04-02 13:51
開封後的牛奶可以保存多久2025-04-02 13:49
Hiddleswift finally followed each other on Instagram after 3 excruciating days2025-04-02 13:13
吃了發苦的橙子怎麽辦2025-04-02 13:13