this post was submitted on 18 Sep 2023
623 points (98.9% liked)

Technology

59422 readers
2957 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
all 43 comments
sorted by: hot top controversial new old
[–] AlmightySnoo@lemmy.world 126 points 1 year ago (4 children)

It seems this isn't about customer data:

The exposed data included full backups of two employees' computers. These backups contained sensitive personal data, including passwords to Microsoft services, secret keys, and more than 30,000 internal Microsoft Teams messages from more than 350 Microsoft employees.

[–] ChapolinColoradoNZ@lemmy.world 38 points 1 year ago

Some of that data could be from (or for) customer use, like the service passwords.

[–] Aurenkin@sh.itjust.works 31 points 1 year ago (1 children)

Who TF is keeping secret keys on their dev machine, that shit is toxic. Not to mention passwords

[–] xthexder@l.sw0.com 58 points 1 year ago

They probably mean like private ssh keys and developer credentials, not production keys. Microsoft does not give signing keys to developers, code releases have to get signed through the build servers.

[–] ciko22i3@sopuli.xyz 28 points 1 year ago* (last edited 1 year ago)

What's the other 37.9TB?

[–] crypticthree@lemmy.world 18 points 1 year ago (2 children)

The lax security is still worrying when they have so much data in general

[–] henfredemars@infosec.pub 10 points 1 year ago

The cloud is just somebody else's computer. You give up some control and get some convenience. I'm paranoid about their cloud services and cloud services in general.

[–] GigglyBobble@kbin.social 2 points 1 year ago

On a local pc no less. They don't use password repos at Microsoft?

[–] Llamajockey@lemmy.world 55 points 1 year ago (1 children)

You're telling me they leaked my Ai request to put boobs on a sandwich us leaked now?!

[–] ElBarto@sh.itjust.works 17 points 1 year ago* (last edited 1 year ago) (1 children)

I'm pretty sure 20 TB of that is just "put ~~books~~ boobs on *insert thing"

Edit: I really need to proofread before I post.

[–] GuyDudeman@lemmy.world 4 points 1 year ago (1 children)
[–] FaceDeer@kbin.social 5 points 1 year ago (1 children)

Seems there are more bibliophiles out there than we realize.

[–] rhythmisaprancer@kbin.social 1 points 1 year ago (1 children)
[–] Eonandahalf@lemmy.world 1 points 1 year ago (1 children)
[–] TheYear2525@lemmy.world 2 points 1 year ago (1 children)
[–] rhythmisaprancer@kbin.social 1 points 1 year ago

Great boobli moogly!

[–] bender@insaneutopia.com 43 points 1 year ago (2 children)

I worked for a cloud company that rhymes with frugal. They had sent a customers data into another customer’s environment. The customer who unknowingly received this data had to be locked out of their environment for a week until they were able to remove the other customers data.

[–] i_love_FFT@lemmy.ml 19 points 1 year ago (1 children)

I asked chat GPT and it couldn't understand which company you were talking about. I think you will be safe for now! 😏

[–] MinusPi@yiffit.net 5 points 1 year ago (3 children)
[–] xthexder@l.sw0.com 4 points 1 year ago

Wow, not even A tech company, but THE tech company that rhymes with frugal.

[–] snek@lemmy.world 1 points 1 year ago (1 children)

So I've either been saying Google or frugal wrong. Which one is it?

Oh nevermind: /ˈfɹuːɡəl/ /ˈɡuː.ɡəl/

[–] TheYear2525@lemmy.world 2 points 1 year ago (1 children)

Which one were you saying wrong?

[–] snek@lemmy.world 1 points 1 year ago* (last edited 1 year ago) (1 children)

I was saying /ˈfɹuːɡʌl/

PS this helps https://www.ipachart.com/

[–] TheYear2525@lemmy.world 2 points 1 year ago (1 children)

I could be wrong, but I don’t think most native English speakers distinguish between the two. Wikipedia says Philadelphia’s accent does.

[–] snek@lemmy.world 1 points 1 year ago

Well that's good to hear, maybe that is where I picked it up (not a native speaker)

[–] ciko22i3@sopuli.xyz 2 points 1 year ago

Is it the big G? English is not my first language.

[–] ohlaph@lemmy.world 32 points 1 year ago (1 children)
[–] raspberriesareyummy@lemmy.world 49 points 1 year ago (1 children)

If it's a root CA private signing key, 2KB could be fatal. If it's tiktoks, 100TB could be worthless.

[–] Polar@lemmy.ca 18 points 1 year ago (1 children)

And if it's porn? Priceless.

[–] SpiritedTaco@lemm.ee 10 points 1 year ago (1 children)

For everything else: MasterCard.

[–] Plopp@lemmy.world 2 points 1 year ago

And my axe!

[–] ezchili@iusearchlinux.fyi 28 points 1 year ago

This exact scenario with links to cloud folders is also how the infowars lawyer leaked case related stuff to the prosecution lawyer for the sandyhook families

I have a feeling it's time to think of a better (or worse!) UI/UX to alleviate human error

[–] ComradeKhoumrag@infosec.pub 21 points 1 year ago (1 children)

Interesting, is that leaked on any forums? Been a while since I've searched for leaked databases but all my old go to forums got raided (understandably so)

[–] cy_narrator@discuss.tchncs.de 16 points 1 year ago (4 children)

Are you planning to download 38TB data?

[–] ComradeKhoumrag@infosec.pub 10 points 1 year ago (1 children)
[–] reverendsteveii@lemm.ee 4 points 1 year ago

Life uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh finds a way

[–] Stumblinbear@pawb.social 5 points 1 year ago

Without question

[–] shortgiraffe@lemmy.world 3 points 1 year ago* (last edited 1 year ago)

I would want to try to work something out, I really want a peek at that transformers folder.

[–] ezchili@iusearchlinux.fyi 2 points 1 year ago

I'd imagine the bulk of it is the training bucket, the interesting stuff should be way less

[–] morgan_423@lemmy.world 20 points 1 year ago

Save yourself the PR nightmare that accompanies data breaches! Prevent all outside hacking forever by proactively dumping your data onto the internet yourself!

It's pure genius!

[–] possiblylinux127@lemmy.zip 9 points 1 year ago* (last edited 1 year ago)

I hate it when I do that

[–] notannpc@lemmy.world 2 points 1 year ago

Accidental goatse from Microsoft. That a good time.