Microsoft Data Leak Exposes 38 Million Records

Upguard Research has revealed that 38 million data records including COVID-19 vaccination status, Social Security numbers and email addresses were exposed in Microsoft’s latest data leak.

This was because of weak default configurations for Microsoft Power Apps, low-code tools used to design apps and create public and private websites.

According to Upguard, the problem was first discovered on May 24, when it affected the ODdata API for a Power Apps portal, and the company submitted a vulnerability report to Microsoft on June 24.

Upguard went on to explain that the event occurred after all data types were released, when some data, such as personal identification, should have been kept private, leading to a misconfiguration that caused some private data to leak.

According to Upguard’s report, the data leaks affected many well-known American companies, including American Airlines, Microsoft, governments of Indiana, Maryland, New York City, J B. Hunt and others.

For more information, read the original story in ZDNet.

Microsoft Data Leak Exposes 38 Million Records

Top Stories

New Deepfakes Can Mimic Heartbeats, Evading Detection Tools

RBC Pushes Employees Back to Office to Preserve ‘Winning Culture’

Microsoft Azure Closes Cloud Gap with AWS as AI and Enterprise Migrations Fuel Growth

Sleeper Supply Chain Attack Activates After 6 Years

Dell has another major round of layoffs

One of the biggest data breaches ever, billions of users affected

Related Articles

65% of Canadians Still Reusing Passwords Despite Identity Theft Fears, Okta Study

Ottawa Warns of China-Linked Hack on Canadian Telecom Gear

Copilot Exploit Shows How AI Agents Can Be Hijacked to Steal Corporate Data

Sleeper Supply Chain Attack Activates After 6 Years

Jim Love

Follow Us

Popular categories

Tech News Delivered