1 yr. ago • 98%

Microsoft AI team accidentally leaks 38TB of private company data

mashable.com Microsoft AI team accidentally leaks 38TB of private company data

Whoops.

42 comments

It seems this isn't about customer data:

The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.

126
- Some of that data could be from (or for) customer use, like the service passwords.
  
  38
- Who TF is keeping secret keys on their dev machine, that shit is toxic. Not to mention passwords
  
  31
  
  They probably mean like private ssh keys and developer credentials, not production keys. Microsoft does not give signing keys to developers, code releases have to get signed through the build servers.
  
  58
- What's the other 37.9TB?
  
  28
- The lax security is still worrying when they have so much data in general
  
  18
  
  The cloud is just somebody else's computer. You give up some control and get some convenience. I'm paranoid about their cloud services and cloud services in general.
  
  10
  
  On a local pc no less. They don't use password repos at Microsoft?
  
  2
You're telling me they leaked my Ai request to put boobs on a sandwich us leaked now?!

54
- I'm pretty sure 20 TB of that is just "put ~~books~~ boobs on *insert thing"
  
  Edit: I really need to proofread before I post.
  
  16
  
  Or boobs, even!
  
  4
I worked for a cloud company that rhymes with frugal. They had sent a customers data into another customer’s environment. The customer who unknowingly received this data had to be locked out of their environment for a week until they were able to remove the other customers data.

45
- I asked chat GPT and it couldn't understand which company you were talking about. I think you will be safe for now! 😏
  
  19
  
  Yes it can
  
  5
- Is it the big G? English is not my first language.
  
  2
Only 38T eh?

32
- If it's a root CA private signing key, 2KB could be fatal. If it's tiktoks, 100TB could be worthless.
  
  49
  
  And if it's porn? Priceless.
  
  18
This exact scenario with links to cloud folders is also how the infowars lawyer leaked case related stuff to the prosecution lawyer for the sandyhook families

I have a feeling it's time to think of a better (or worse!) UI/UX to alleviate human error

28
Interesting, is that leaked on any forums? Been a while since I've searched for leaked databases but all my old go to forums got raided (understandably so)

21
- Are you planning to download 38TB data?
  
  16
  
  Love always finds a way
  
  10
  
  Without question
  
  5
  
  I would want to try to work something out, I really want a peek at that transformers folder.
  
  3
  
  I'd imagine the bulk of it is the training bucket, the interesting stuff should be way less
  
  2
Save yourself the PR nightmare that accompanies data breaches! Prevent all outside hacking forever by proactively dumping your data onto the internet yourself!

It's pure genius!

20
I hate it when I do that

9
Accidental goatse from Microsoft. That a good time.

2

You've viewed 42 comments.