A computer hacker caused $4M of damage in cyber-attacks on Microsoft and Nintendo after he…
The leak reportedly affected government agencies in Indiana, Maryland and New York, as well as private companies, including giants such as American Airlines, Ford, JB Hunt and even Microsoft itself.
For example, 332,000 email addresses and employee IDs used to calculate payroll at Microsoft were publicly available, as well as more than 85,000 records associated with the Business Tools Support and Mixed Reality portals.
Experts write that all this data was available to anyone due to mistake and leaked through the OData PowerApps API. The problem lay in the misconfiguration of how exactly the portal can exchange data and store it. The fact is that to protect information, it is necessary not only to set specific Table Permissions for tables, but also to activate Enable Table Permissions. Alas, many did not.
Researchers notified Microsoft of the data breach as early as June 24, 2021, but at first the company refused to acknowledge this as a vulnerability and a problem, saying that this was a “deliberate” behavior of the system.
Let me remind you that we wrote that Microsoft and Eclypsium got into serious debate over Dell SupportAssist vulnerabilities.
Phish.sms is a site that tries to trick you into subscribing to its browser notifications…
Hotbvipuro.today is a domain that tries to trick you into clik to its browser notifications…
Vfirewall.pro is a site that tries to force you into subscribing to its browser notifications…
Hotbguxihu.today is a domain that tries to force you into subscribing to its browser notifications…
Irlitathal.com is a domain that tries to trick you into subscribing to its browser notifications…
Hotbvukupa.today is a site that tries to force you into subscribing to its browser notifications…