Azure blunder left Bing results editable, MS 365 accounts potentially exposed • The Register

Azure blunder left Bing results editable, MS 365 accounts potentially exposed • The Register

An Azure Active Directory (AAD) misconfiguration by Microsoft in one of its own cloud-hosted applications could have allowed miscreants to subvert the IT giant’s Bing search engine – even changing search results.

User information including Outlook emails, calendars, and Teams messages was also left vulnerable to potential theft and snooping.

Wiz researchers discovered the security blunder, and said the error – which they dubbed BingBang – was due to an authorization…


Source link

About search

Check Also

Little change to Microsoft Bing’s search market share

Little change to Microsoft Bing’s search market share

Microsoft Bing managed to steal a tiny bit of Google’s search market share in the …

Leave a Reply

Your email address will not be published. Required fields are marked *