Microsoft misconfigured its own Microsoft Azure Blob (cloud) storage buckets, which housed third-party data. The company in effect scored an own-goal in favor of those seeking to steal intellectual property. CISOs should pursue the concept of shared responsibility as the cloud provider is responsible for the security of the cloud, while the customer is responsible. The true approach is to provide data protection at the file level regardless of the point of creation or whether it is at rest, in transit, or external.”]