this post was submitted on 19 Sep 2023
238 points (99.2% liked)

Technology

59424 readers
3747 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Microsoft leaks 38TB of private data via unsecured Azure storage::The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data starting in July 2020 while contributing open-source AI learning models to a public GitHub repository.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 44 points 1 year ago (1 children)

This will definitely make customers less trustful of Microsoft when dealing with their privacy-focused AI projects. Here's to hoping that open-source LLMs become more advanced and optimized.

[–] [email protected] 12 points 1 year ago (4 children)

I am not sure. This was mostly a case of human error in not properly securing urls/storage accounts. The lack of centralised control of SAS tokens that the article highlights was a contributing factor, but not the root cause, which was human error.

If I leave my front door unlocked and someone walks in and robs my house, who is to blame? Me, for not locking the door? Or the house builder, for not providing a sensor so I can remotely check whether the door is locked?

[–] [email protected] 11 points 1 year ago* (last edited 1 year ago)

If I leave my front door unlocked and someone walks in and robs my house, who is to blame?

In a private environment, one person's mistake can happen, period.

A corporate environment absolutely needs robust procedures in place to prevent the company and all their clients from such huge impact of one person's mistake.

But that's a looong tradition at M$ - not having it, I mean.

[–] [email protected] 5 points 1 year ago* (last edited 1 year ago)

Azure has a huge problem with SAS tokens. The mechanism is so bad, that it invites situations like this.

[–] [email protected] 3 points 1 year ago

if you live in an apartment and the landlord doesnt replace the front door locks when they break is a better analogy

[–] [email protected] 3 points 1 year ago

Root cause is whatever is allowing the human error to happen.