Misconfigured Microsoft application leaves records of nearly 40 million people exposed

According to a cybersecurity vendor, the misconfiguration of Microsoft Power Apps, a low-code app design tool, has exposed up to 38 million personal records at 47 organizations, including American Airlines and Ford.

Among the personal records exposed at organizations were COVID-19 vaccination appointment information, Social Security numbers, employee IDs, and email addresses, according to cybersecurity risk management firm UpGuard. The company said that J.B. Hunt, the Maryland Department of Health, and Indiana were also among the organizations with misconfiguration errors.

Power Apps allows users with little programming experience to create cloud-hosted apps quickly for things such as online
Read more…

Please follow and like us: