Microsoft Exposed 250 Million Customer Service Records Mistakenly
According to the blog post, the error was due to the misconfiguration of an internal customer support database, which was used to support case analytics. This incident accidentally exposed nearly 250 million “Customer Service and Support” (CSS) records online between December 5 and December 31 that were accessible to anyone with internet access and had no password protection or encryption. “Our investigation has determined that a change made to the database’s network security group on December 5, 2019, contained misconfigured security rules that enabled exposure of the data....