250 Million Microsoft Customer Service and Support Records Exposed on the Web (Jan 22, 2020)
Researchers from Comparitech discovered the exposure of nearly 250 million customer service and support (CSS) records from five vulnerable Elasticsearch servers. It was detailed by lead Compresearcher Bob Diachenko that personally identifiable information (PII) involving contract number, email aliases and payment information were withdrawn from the records However, a large amount of records enclosed plain text data including but is not limited to; case numbers, CSS claims and cases, customer email addresses, internal notes, IP addresses, locations and Microsoft support agent emails.
Recommendation: The exposure of PII requires affected individuals to take precautionary measures to protect their identity and their finances. Identity theft services and regularly monitoring bank statements can assist in preventing illicit purchases, or applying for financial services from taking place by actors using stolen data.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.