HealthcareCISO

The research team from UpGuard, a cybersecurity company, found data leaks from dozens of entities as a result of the default permissions on Microsoft Power Apps portals.

As outlined in a new report, the leaks comprised 38 million records total, across 47 affected organizations.

A Microsoft representative told Healthcare IT News that only a small subset of customers configured the portal as described in the report, and that the company worked closely with those customers to ensure they were using the privacy settings consistent with their needs.

The representative said its primary portal designer, Design Studio, uses strong privacy settings by default and that the organization is in the process of ensuring alternative designer tools default to similar strong settings.

"Our products provide...