Story of the creds-leaking Exchange Autodiscover flaw – the one Microsoft wouldn’t fix even after 5 years

28 September 2021

Microsoft Exchange clients like Outlook have been supplying unprotected user credentials if you ask in a particular way since at least 2016. Though aware of this, Microsoft’s advice continues to be that customers should communicate only with servers they trust.

Read full article on The Register

Date:

28 September 2021

Categorie(s):

NEWS

Tag(s):

Autodiscover, Exchanges, IT, Microsoft, Story

How to Delete Your Browser History29 April 2024
UK outlaws awful default passwords on connected devices29 April 2024
Account compromise of “unprecedented scale” uses everyday home devices29 April 2024
Connected devices with awful default passwords now illegal in UK29 April 2024
Chrome users report broken connections after Chrome 124 release29 April 2024