Microsoft Exchange Bug Leaks 100,000 Windows Domain Credentials

Code on a computer screen

Microsoft Exchange’s Autodiscover protocol leaked approximately 100,000 login names and passwords for Windows domains worldwide as a result to an unpatched design flaw in the implementation.

The Exchange Audiodiscover service enables users to configure applications, such as Microsoft Outlook, with minimal user input. This allows a combination of email addresses and passwords to be utilized to retrieve other predefined settings required to set up their email clients.

Read more on the leak here.

You May Also Like…

Request a Demo

AgileBlue is a software company with an innovative SOC-as-a-Service for 24X7 network monitoring, cloud security, data privacy and compliance.

Our modern SOC-as-a-Service is built on innovative machine learning and autonomous execution. If you would like to discuss our SOC-as-a-Service, Partner Program or schedule a brief demo please give us a little info and we will contact you immediately.