Massive Microsoft Power Apps data breach exposes personal details of 38 million people: American Airlines and NYC schools data including social security numbers and vaccination status among information leaked
- Microsoft’s Power Apps have been breached, according to Wired
- The personal data of 38 million people has been exposed
- Data includes COVID vaccination status, social security and phone numbers
- Affected companies include American Airlines, Ford, and NYC public schools
- It was unclear how the breach happened and who was responsible
- Researchers from security firm UpGuard found that the data was public
- They do not believe any of the 38m people have been directly impacted so far
Personal data of 38 million people has been exposed following a breach of Microsoft’s Power Apps.
The data includes social security and phone numbers, COVID vaccination status and home addresses.
It was unclear how the breach happened, or who was responsible.
Researchers at cybersecurity firm UpGuard found the breaches in May. They do not think anyone’s data has been fraudulently used, so far.
Microsoft’s Power Apps have been affected by the breach, which saw the data of 38 million people exposed
The exposed data was all stored in Microsoft’s Power Apps portal service, Wired reported.
Power Apps is a development platform that makes it easy to create web or mobile apps for external use.
If you need to spin up a vaccine appointment sign-up site quickly during, say, a pandemic, Power Apps portals can generate both the public-facing site and the data management backend.