Microsoft Exchange Bug Leaks 100,000 Windows Domain Credentials

Code on a computer screen

Microsoft Exchange’s Autodiscover protocol leaked approximately 100,000 login names and passwords for Windows domains worldwide as a result to an unpatched design flaw in the implementation.

The Exchange Audiodiscover service enables users to configure applications, such as Microsoft Outlook, with minimal user input. This allows a combination of email addresses and passwords to be utilized to retrieve other predefined settings required to set up their email clients.

Read more on the leak here.

Written by Gillian Sweny

Gillian is Director of Marketing at AgileBlue with over 13 years of experience in the marketing industry. Gillian resides in Cleveland, OH with her husband and 3-year-old son.

September 24, 2021

You May Also Like…

Request a Demo

AgileBlue is a software company with an innovative SOC-as-a-Service for 24X7 network monitoring, cloud security, data privacy and compliance.

Our modern SOC-as-a-Service is built on innovative machine learning and autonomous execution. If you would like to discuss our SOC-as-a-Service, Partner Program or schedule a brief demo please give us a little info and we will contact you immediately.