Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
Microsoft data breach overview:
- Who: Microsoft revealed that a misconfigured internet-accessible Microsoft server exposed some of its customers’ sensitive information.
- Why: Microsoft said an “unintentional” misconfiguration on an endpoint “not in use” in its ecosystem caused the data breach.
- Where: Microsoft is used by consumers nationwide.
Microsoft disclosed to the public yesterday that some sensitive customer information was exposed due to a misconfigured internet-accessible Microsoft server.
In a blog post, the tech company says it “quickly secured” the endpoint of the misconfigured server after security researchers at Tech Intelligence Firm SOCRadar notified it of the data leak on Sept. 24.
The misconfiguration led to the “potential for unauthenticated access” to certain business transaction data that corresponds to interactions between Microsoft and its prospective customers, according to the Microsoft data breach blog post.
“The issue was caused by an unintentional misconfiguration on an endpoint that is not in use across the Microsoft ecosystem and was not the result of a security vulnerability,” Microsoft says in the post.
Microsoft also reassured consumers that it didn’t find any indication that any customer accounts or systems were compromised due to the misconfigured server and that it contacted any affected customers directly.
Microsoft data breach includes names, email content, among other things
Data exposed in the Microsoft data breach included customer names, email content, company names and phone numbers and email addresses, Microsoft says in the blog post. It “may have included attached files relating to business between a customer and Microsoft or an authorized Microsoft partner,” according to the company.
Microsoft says that it is “working to improve our processes” to avoid similar types of misconfigurations going forward as well as “performing additional due diligence to investigate and ensure the security of all Microsoft endpoints.”
Consumers or organizations who did not receive a Message Center communication from Microsoft about the breach are not impacted by the issue, according to the company.
In June, Microsoft announced that it would be officially retiring its Internet Explorer web browser while redirecting its users to Microsoft Edge.
Have you had your personal information exposed by the Microsoft data breach? Let us know in the comments!
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
Honda, Hyundai, Kia, Subaru vehicle data collection class action lawsuit investigation
May 17, 2024 | Legal News
154 thoughts onMicrosoft data breach compromises customers’ sensitive information due to misconfigured server
Please add me to the law suit
**MICROSOLF, HAS BEEN MY PROVIDER, 15/YRS** AL
Add me
Ad me
there is no way to tell when the emails received are scams or not so i always delete and never open them. i have used this product for years and since i have been submitting so many documents i am worried about the compromise. How are we to know for sure if receiving so much spam that appears to be fraudulent or threatening to close down account if you dont verify this or that..?
Add me.. I’ve been getting a bunch of scam emails and things off that nature any more
Please add me
Add me now please
With all the fraud, emails and texts I most certainly could of been effected. 2021
Add me please
Please add me.
Please add me-long time user