Microsoft has conducted a data blunder by accidentally leaking information related to over 65k organizations worldwide. Security analysts from SOCRadar released a report on the issue and confirmed that leak dubbed as ‘BlueBleed’ Part 1 witnessed a data leak of about 2.3 terabytes of data containing over 335,000 emails, details of over 133,000 projects and over 548,000 users.
SOCRadar confirmed the present B2B( Business 2 Business) info leak as the most significant in the history of data breaches of intellectual property that could in future lead to identity thefts, social engineering attacks and extortion.
Cybersecurity Insiders learnt that the leaked data contains details such as phone numbers, email addresses, names, email content, signed user docs, product orders, R&D related info, POE, some NDA contracts, and Statement of Work documents.
A screen grab available on Reddit claims that the Microsoft data leak also contained info, such as sales strategies, customer asset documents, partner ecosystem, price list of stocks and customer comments that can be deemed as highly sensitive set of data.
Microsoft reacted to the news and claims that SOCRadar allegations are over-exaggerated and the situation seems under control as the leaked data is a duplicate data of emails, users and projects and might have been exposed because of a mis-configured Azure Blob Storage.
NOTE- The Redmond giant announced a clinical investigation on this cyber attack and assured that it will reveal as the probe gets concluded.
