If you have any concerns about this, please contact Microsoft Security Response Center directly.
If you have any concerns about this, please contact Microsoft Security Response Center directly.
On 19th October 2022, Microsoft released an update on an ongoing investigation related to a misconfigured Microsoft endpoint. This misconfiguration resulted in the potential for unauthenticated access to customers’ data stored in Microsoft Azure Blob Storage.
Necessary remediation actions were performed by Microsoft to secure the endpoint and there are no early indications of customer accounts or systems being compromised.
What does this mean to you?
Microsoft has directly notified affected customers and provided them with instructions for contacting Microsoft with questions for concerns. If you have not been contacted by Microsoft about this matter, you do not have to take any action and it means your organization has not been affected.
We have focused our attention on directly notifying impacted customers and provided them with instructions for contacting Microsoft with questions or concerns. If you did not receive a Message Centre communication, our investigation did not identify an impact to you or your organization.
We want to assure customers that SoftwareOne has not received a message from the Microsoft Message Center about this and has therefore not been impacted by this.
However, some confusion has arisen about this as threat intelligence firm SOCRadar who discovered the misconfiguration published a database of potentially impacted organizations and SoftwareOne was listed on that. This is incorrect. SoftwareOne has not been impacted.
If you have any concerns about this, please contact Microsoft Security Response Center directly.
Author
