CSOonline

How to avoid the Microsoft GitHub goof that exposed 38TB of sensitive employee data

Microsoft’s AI research team accidentally exposed 38 terabytes of private data through a Shared Access Signature (SAS) link it published on a GitHub repository, according to a report by Wiz research ...
Redmond Magazine

Azure Storage Previews Entra ID-Scoped User Delegation SAS Controls

Azure Storage preview restricts user delegation SAS to specific Microsoft Entra ID identities. Identity-bound SAS tokens strengthen governance without exposing storage account keys. Update aligns ...
Computer Weekly

38TB Microsoft data leak highlights risks of oversharing

Microsoft has learned an important lesson after having to clean up a major data leak resulting from an “overly permissive” shared access signature (SAS) token accidentally disclosed by one of its ...
Bleeping Computer

Microsoft leaks 38TB of private data via unsecured Azure storage

The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data starting in July 2020 while contributing open-source AI learning models to a public GitHub repository.