Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
Microsoft data breach overview:
- Who: Microsoft revealed that a misconfigured internet-accessible Microsoft server exposed some of its customers’ sensitive information.
- Why: Microsoft said an “unintentional” misconfiguration on an endpoint “not in use” in its ecosystem caused the data breach.
- Where: Microsoft is used by consumers nationwide.
Microsoft disclosed to the public yesterday that some sensitive customer information was exposed due to a misconfigured internet-accessible Microsoft server.
In a blog post, the tech company says it “quickly secured” the endpoint of the misconfigured server after security researchers at Tech Intelligence Firm SOCRadar notified it of the data leak on Sept. 24.
The misconfiguration led to the “potential for unauthenticated access” to certain business transaction data that corresponds to interactions between Microsoft and its prospective customers, according to the Microsoft data breach blog post.
“The issue was caused by an unintentional misconfiguration on an endpoint that is not in use across the Microsoft ecosystem and was not the result of a security vulnerability,” Microsoft says in the post.
Microsoft also reassured consumers that it didn’t find any indication that any customer accounts or systems were compromised due to the misconfigured server and that it contacted any affected customers directly.
Microsoft data breach includes names, email content, among other things
Data exposed in the Microsoft data breach included customer names, email content, company names and phone numbers and email addresses, Microsoft says in the blog post. It “may have included attached files relating to business between a customer and Microsoft or an authorized Microsoft partner,” according to the company.
Microsoft says that it is “working to improve our processes” to avoid similar types of misconfigurations going forward as well as “performing additional due diligence to investigate and ensure the security of all Microsoft endpoints.”
Consumers or organizations who did not receive a Message Center communication from Microsoft about the breach are not impacted by the issue, according to the company.
In June, Microsoft announced that it would be officially retiring its Internet Explorer web browser while redirecting its users to Microsoft Edge.
Have you had your personal information exposed by the Microsoft data breach? Let us know in the comments!
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
153 thoughts onMicrosoft data breach compromises customers’ sensitive information due to misconfigured server
Many problems w/Microsoft. W/security changes a couple yrs. ago – couldn’t get into account for 6 mos. and no customer service. Often when they do mandatory updates, things go wrong/become complex/settings change to allow things I didn’t permit. Had problems w/Bing Rewards game (no longer accept landlines though web pages say they do and game has box to make this choice; they said it was for security; I said it’s less secure to keep communicating w/them and discriminatory toward those who can’t afford to add a cell; others I deal with still call me; also how is my home landline less secure than a hackable cell). Support team gave nonsensical or overly complex solutions. Lost all my points. Got email – said it was support team asking for phone # used. Used friend’s # (they said I could). Gave # reluctantly – said they needed it to investigate game problems. Got no response from team – friend immediately inundated w/spam. They add news feeds and insane amt. of ads – hard to delete and had computer attacked through these additions 2x even though I have security- got police involved. Many others going through the same thing – look on forum pages.
I’ve been using Microsoft for years. Can you add me
Yes couldn’t get or change my password
Please add me I tried to set up a account with Microsoft had never before it had my phone number and email address all ready on file when trying to figure out what was going on which I never did my information if I said forgot password was sent to a total different email address than what they had on file for me
This sounds like what I’m hearing all the time. Im just simply afraid to even store or use Microsoft at all. I want I. On the class action law suit for sure.
I’ve been using Microsoft for years please add me
Will it ever end. Please add me!
I have Microsoft on my computer and software