• AlmightySnoo 🐢🇮🇱🇺🇦@lemmy.world
    link
    fedilink
    English
    arrow-up
    114
    ·
    1 year ago

    It seems this isn’t about customer data:

    The exposed data included full backups of two employees’ computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.

    • Aurenkin@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      33
      arrow-down
      5
      ·
      1 year ago

      Who TF is keeping secret keys on their dev machine, that shit is toxic. Not to mention passwords

      • xthexder@l.sw0.com
        link
        fedilink
        English
        arrow-up
        55
        ·
        1 year ago

        They probably mean like private ssh keys and developer credentials, not production keys. Microsoft does not give signing keys to developers, code releases have to get signed through the build servers.

      • henfredemars@infosec.pub
        link
        fedilink
        English
        arrow-up
        10
        ·
        1 year ago

        The cloud is just somebody else’s computer. You give up some control and get some convenience. I’m paranoid about their cloud services and cloud services in general.

  • Llamajockey@lemmy.world
    link
    fedilink
    English
    arrow-up
    50
    arrow-down
    1
    ·
    1 year ago

    You’re telling me they leaked my Ai request to put boobs on a sandwich us leaked now?!

  • bender@insaneutopia.com
    link
    fedilink
    English
    arrow-up
    39
    ·
    1 year ago

    I worked for a cloud company that rhymes with frugal. They had sent a customers data into another customer’s environment. The customer who unknowingly received this data had to be locked out of their environment for a week until they were able to remove the other customers data.

  • ezchili@iusearchlinux.fyi
    link
    fedilink
    English
    arrow-up
    26
    ·
    1 year ago

    This exact scenario with links to cloud folders is also how the infowars lawyer leaked case related stuff to the prosecution lawyer for the sandyhook families

    I have a feeling it’s time to think of a better (or worse!) UI/UX to alleviate human error

  • ComradeKhoumrag@infosec.pub
    link
    fedilink
    English
    arrow-up
    20
    ·
    1 year ago

    Interesting, is that leaked on any forums? Been a while since I’ve searched for leaked databases but all my old go to forums got raided (understandably so)

  • morgan423@lemmy.world
    link
    fedilink
    English
    arrow-up
    18
    ·
    1 year ago

    Save yourself the PR nightmare that accompanies data breaches! Prevent all outside hacking forever by proactively dumping your data onto the internet yourself!

    It’s pure genius!