Microsoft experts accidentally revealed the company's internal logins

The cybersecurity firm discovered that Microsoft specialists uploaded confidential login credentials to GitHub to log in to the company's own systems, writes Motherboard.

On August 16, it became known that several specialists who appear to be Microsoft employees disclosed confidential login credentials to the company's infrastructure on GitHub. So they potentially opened a gateway to Microsoft's internal systems for attackers.

The Corporation confirmed the disclosure, but they declined to specify which systems protected the credentials.

"We have conducted an investigation and taken steps to protect these credentials. Although they were accidentally made public, we did not see any evidence that sensitive data was accessed or credentials were used improperly. We are continuing our investigation and will take the necessary measures to prevent further unintentional sharing of credentials," Microsoft said.

Three of the seven login credentials were still active when cybersecurity firm spiderSilk discovered them, and one of them was uploaded just a few days ago.

All disclosed accounts are associated with Azure servers and the official Microsoft client ID.

In March, the corporation was already attacked by intruders, although this case is not related to a new data leak. Hackers then gained access to the Azure DevOps account, and then published a large amount of Microsoft source code, especially for Bing and Microsoft Cortana.

Posted By John Doe

GlobalLogic opens two new development centers in Mexico

Klarna has a 10% reduction in staff "due to the war in Ukraine": the company laid off about 700 employees via video call (UPD)