The researchers of the SOCRadar found for a server and storage in Azure, with some information on the interior, with respect to the Bing. The server will be accessible from the internet, so everyone can see the passwords, and other data for several employees. This is serious incidents, the security of Microsoft-in is now at the center of criticism after the attack against the Outlook of cyber criminals cyber china.
“A failure is a great for the Microsoft
Three researchers from the SOCRadar, a company that specializes in the identification and removal of security in the organization, find a servers public storage in Azure. Being not protected with a password, it is accessible through the Internet. The server handled the code, enabled, and files, and to set up the passwords, keys, and credentials to be used by the employees of Microsoft, to be entered on the basis of the data, and the systems of the interior.
The researchers reported this issue on the 6th of February. Microsoft provided a server about a month later (march 5). It is not known how long it is been accessible server, and if the passwords are reset. The researchers pointed to the seriousness of the incident, when the data exhibits can be used on compromised systems, and internal to Microsoft.
This is just the latest in a series of incidents for the sake of the “shpërqendrimeve”. By August 2022, some of the staff had left the credentials of the entry in the systems of the interior, the code is published in GitHub.
Last year, cyber criminals cyber china, from the Storm-0558 were able to go to some of the accounts from Outlook, including those of government agencies, the american). According to the report of the executive Board of the Review of the Cyber Security, the approach was facilitated by a “kaskadë dështimesh security” from Microsoft.
Discussion about this post