B2B cyber security

IT stories, news, reports ✓ always up to date

Microsoft forgets its own passwords on freely accessible servers

30 April 2024

Microsoft has fixed a major security error: despite an external warning, a large number of codes, scripts and configuration files with passwords, keys and login information for accessing services for the search engine Bing were lying on an unprotected server in Azure for weeks. As the technology portal TechCrunch reports, security researchers Can Yoleri, Murat Özfidan and Egemen Koçhisarlı from SOCRadar reported that they found internal information about Microsoft's Bing search engine on an open server in Azure. The specialists usually look for vulnerabilities that could be attacked. In this case there was no hurdle for immediate...

Bing & Office 365: Errors in Azure allow data theft

4 April 2023

| No comments

| Short news

Microsoft has fallen victim to its own Azure Active Directory – AAD configuration challenges. Due to the misconfiguration, experts managed to add malicious code to some Bing search results, which exposed Microsoft 365 users. Wiz Research experts found the configuration errors and exploited them for testing. Microsoft rewarded the experts with a BugBounty and fixed the bugs immediately. What happened? The experts describe the incident: Manipulated Bing search results including malicious code “These applications allowed us to view and change various types of sensitive Microsoft data. In one particular case, we were unable to find search results on…

Cookie Settings

Tag: Bing

Microsoft forgets its own passwords on freely accessible servers

Bing & Office 365: Errors in Azure allow data theft

Which user group do you belong to? (No tracking!)

Important links

Latest Articles & News

It was searched for

Social Media