38 million data records across thousands of web apps were left exposed to due to misconfigured settings for Microsoft Power Apps, according to security firm UpGuard. The records include social security numbers, COVID-19 vaccination status, addresses, and phone numbers.
American Airlines, Ford, Microsoft, and several US government agencies are said to be among the 47 entities notified of the data exposure by UpGuard.
Also Read: Microsoft, Google, Apple release patches to protect users from Israeli DevilsTongue spyware
Microsoft Power Apps can be used to create user-facing websites and apps, which can̉ store public and private data. The service’s default settings left this data exposed up until June 2021. Microsoft has already made the necessary changes to fix this issue.
The news comes as Microsoft CEO Satya Nadella is set to join Apple’s Tim Cook, Amazon CEO Andy Jassy, and representatives from Google, IBM, and JP Morgan at a White House meeting with US President Joe Biden, according to Reuters.
Also Read: Biden blames China for cyberattack on Microsoft, NATO forms cybersecurity alliance
The meeting is being held to discuss efforts by the companies to improve cybersecurity, as multiple high-profile cyberattacks have crippled various American companies and government agencies over the past year.