In a startling revelation, Microsoft’s AI research division has accidentally exposed tens of terabytes of sensitive data, including private keys, passwords, and confidential messages. The incident occurred when the division published an open-source training data repository on GitHub.
Cloud security startup Wiz, which specializes in identifying vulnerabilities in cloud-hosted data, uncovered this security lapse during its routine monitoring of cloud services. The GitHub repository, intended to provide open-source code and AI models for image recognition, instructed users to download the models from an Azure Storage URL. However, the URL had been misconfigured, granting unintended permissions on the entire storage account, thereby exposing additional private data.
The data breach, which had persisted since 2020, unveiled a staggering 38 terabytes of sensitive information. This included personal backups from the computers of two Microsoft employees, passwords to various Microsoft services, secret keys, and over 30,000 internal Microsoft Teams messages exchanged among hundreds of company employees.
The primary cause of the exposure was the presence of an overly permissive Shared Access Signature (SAS) token within the URL. SAS tokens, employed by Azure, are used to create shareable links that grant temporary access to data within an Azure Storage account. In this instance, the SAS token provided more extensive access than what was originally intended.
Wiz promptly reported its findings to Microsoft on June 22, prompting the company to take swift action by revoking the SAS token on June 24. Microsoft’s investigation into the potential organizational impact concluded on August 16.
Microsoft has reassured users and stakeholders that no customer data was compromised, and no internal services were put at risk due to this issue. However, the incident has raised concerns about the security of cloud-hosted data and the importance of robust access controls and permissions.
In response to the incident, Microsoft announced an expansion of GitHub’s secret spanning service. This enhancement will now monitor all public open-source code changes for plaintext exposure of credentials and other secrets, including SAS tokens that may have overly permissive expirations or privileges.
This incident underscores the critical need for vigilance and stringent security measures when handling vast amounts of data in the era of AI. As Ami Luttwak, co-founder and CTO of Wiz, pointed out, “AI unlocks huge potential for tech companies. However, as data scientists and engineers race to bring new AI solutions to production, the massive amounts of data they handle require additional security checks and safeguards.”