The size and the fact that this data was leaked as part of building an AI learning model will grab the headlines, deservedly. But, don’t ignore the lessons about SAS tokens getting lost in the day-to-day shuffle of work:
“Microsoft linked the data exposure to using an excessively permissive Shared Access Signature (SAS) token, which allowed full control over the shared files. This Azure feature enables data sharing in a manner described by Wiz researchers as challenging to monitor and revoke.”
As the article mentions, Microsoft does not make it easy to manage SAS tokens in bulk. It’s pretty easy to have a bunch of Azure data blob storage items lying around for years with active SAS tokens that were totally forgotten about.
If you’re using SAS tokens to share data, and it’s good for that, remember to clean up after yourself.
Follow these topics: Security