A flaw in this office 365 app allows hackers to impersonate your employer

Published December 10, 2021
Author: Ash Khan

A flaw in this office 365 app allows hackers to impersonate your employer

Published December 10, 2021
Author: Ash Khan


The famous Office 365 app Microsoft Outlook comes with a set of productivity tools, but recent studies show that hackers might use them to send faked email

Experts outline how hackers can utilize Microsoft’s email service’s productivity capabilities to deliver faked emails to a specific end-user in a research article. 

To complicate things even more, the Office 365 app collects and shows the counterfeit user’s valid Active Directory credentials, giving their bogus emails an air of credibility. 

Hackers have started utilizing Outlook’s productivity tools to deliver supposedly valid emails to intended users in a new social engineering campaign that uses Microsoft’s Outlook to help them look more believable, according to the cybersecurity firm’s investigators. 

All a hacker needs to do is send a faked email to use Outlook’s productivity capabilities on unsuspecting people. They may conduct a domain impersonation assault if they also have their own private server and can construct an email that appears to have come from some other sender. 

If this faked email gets past security barriers, as is commonly the case with most domain impersonations, Microsoft’s email client will display it as a valid email from the spoofed person, complete with images, folders shared between users, valid email addresses, and contact information from their Active Directory.

Microsoft Outlook, as per experts, does not perform email verification such as SPF or DKIM tests. As a consequence, if a faked email reaches a user’s inbox, Outlook assists the hacker by showing accurate Active Directory information. Spoofing is further made simpler for the hacker as Microsoft doesn’t really demand authentication before changing a user’s image in an email and will show all of a user’s contact details even if the user has an SPF failure. 

To avoid being harmed by attacks based on this security flaw, researchers advise security experts to make sure that their company has layered security before the inbox, use an email security solution that analyses files and links and measures domain risk, and defend all apps that communicate with Active Directory, such as Microsoft Teams and SharePoint.

Post Views: 528
Off

Popular Tags

API Integration Branding Services Business Cloud Backup storage cloud storage Cloud VPS Server Hosting Database Services Digital Marketing eBay Store Email Hosting Email Marketing & CRM Email security Explainer Video Facebook Ads Fast Vpn FTP hosting GMAIL Google Ads Google Workspace hacked website repair IT Support Services Linux Managed AWS Cloud Managed Azure Cloud Microsoft 365 Microsoft Office 365 Microsoft Teams Integration mobile apps Outlook email Reseller Hosting SEO Services Server Management SIM Hosting Service SMS Services Social Media Marketing SQL Services Transfer Domain Name Vulnerability Assessment web applications Web Hosting Web Maintenance Website Designing website repair services Website Security Wordpress Hosting

Latest Posts