In brief: Security researchers found that a large number of web apps using Microsoft's Power Apps portals exposed 38 million records on the open Internet as a result of a simple misconfiguration.