Security company SOCRadar discovered a data breach on a Microsoft server. The company gained access to 2.4TB of data containing data from more than 65,000 companies. Microsoft acknowledges the data breach, but says SOGradar is exaggerating the number of victims.
According to SOCRadaru Microsoft’s server contained more than 335,000 email addresses, as well as information on over 133,000 business projects and data from approximately 548,000 people. The security company was able to identify quotes, order forms, signed documents, price lists, sales strategies, and other important business data.
SOCRader notified Microsoft of the vulnerability on September 24th. The American company then quickly came up with a solution and then secured the data. Microsoft regrets in their own words the error and confirmation that personal names, e-mail addresses, e-mails, company names, telephone numbers and files were accessible through the server. The company claims SOCRader misjudged the size of the leak. According to Microsoft, there would be a lot of duplicate data on the server.
The company also regrets that SOCRadar has released a tool that allows customers to check if their data has been leaked. According to Microsoft, this tool can still expose customer data. All customers involved in the leak have been notified, according to Microsoft.