Technology
A bug left your Microsoft account wide open to complete takeover
/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fimage%2F902674%2F7172b294-487c-4e22-8303-0e49c561f219.jpg)
Image: Miguel Candela/SOPA Images/LightRocket via Getty Images
2018-12-11 15:38:02 UTCBug bounty hunter Sahad Nk recently uncovered a series of vulnerabilities that left Microsoft users’ accounts — from your Office documents to your Outlook emails — susceptible to hacking.
While working as a security researcher with cybersecurity site , Nk discovered that he was able to take over the Microsoft subdomain, , because it wasn’t properly configured. This allowed the bug hunter to set up an Azure web app that pointed to the domain’s CNAME record, which maps domain aliases and subdomains to the main domain. By doing this, Nk not only takes control of the subdomain, but also receives any and all data sent to it.
This is where the second major vulnerability comes into play.
Microsoft Office, Outlook, Store, and Sway apps send authenticated login tokens to the subdomain. When a user logs in to Microsoft Live, login.live.com, the login token would leak over to the server controlled by Nk. He would then just have to send over an email to the user asking them to click a link, which would provide Nk with a valid session token — a way to log in to the user’s account without even needing their username or password. And, because Nk has access on Microsoft’s side, that link would come in the form of a login.live.com URL, bypassing phishing detection and even the savviest of internet users.
According to , the issues were reported to Microsoft in June. They were fixed just last month, in November.
!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?
n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
n.push=n;n.loaded=!0;n.version=’2.0′;n.queue=[];t=b.createElement(e);t.async=!0;
t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,
document,’script’,’https://connect.facebook.net/en_US/fbevents.js’);
fbq(‘init’, ‘1453039084979896’);
if (window._geo == ‘GB’) {
fbq(‘init’, ‘322220058389212’);
}
if (window.mashKit) {
mashKit.gdpr.trackerFactory(function() {
fbq(‘track’, “PageView”);
}).render();
}
Yoto Player review: This screen-free speaker keeps kids entertained and engaged
Amazon store scam: How one man lost $56,000
‘Joy’ portrays the birth of IVF as well as fertility stigma. Has much changed today?
Opening an Amazon, Walmart, or TikTok store might be a scam
Why women behaving badly are dominating our screens
The greatest early Black Friday deals from Amazon, Greatest Buy, Walmart, and Target that you can shop now
‘Spellbound’ review: Netflix’s animated adventure finds its magic right at the end
2024 Black Friday ads: Greatest deals from Target, Greatest Buy, Walmart, Kohls, and more
Greatest Amazon Black Friday deals: Early savings on Fire TVs, robot vacuums, and MacBooks
A24 is selling chocolate now. But what would their films actually taste like?
Menendez brothers case reignites online: The questions that keep resurfacing
Election 2024: The truth about voting machine security
Halloween 2024: Weekend debates, obscure memes, and a legacy of racism
‘Only Murders in the Building’ Season 4 ending explained: Who killed Sazz and why?
‘Dragon Age: The Veilguard’ review: BioWare made a good game again
‘Wallace and Gromit: Vengeance Most Fowl’ review: A delightful romp with an anti-AI streak
Teen AI companion: How to keep your child safe
When will we have 2024 election results online?
Polling 101: Weighting, probability panels, recall votes, and reaching people by mail
5 Dyson Supersonic dupes worth the hype in 2024
Yoto Player review: This screen-free speaker keeps kids entertained and engaged
Amazon store scam: How one man lost $56,000
‘Joy’ portrays the birth of IVF as well as fertility stigma. Has much changed today?
Opening an Amazon, Walmart, or TikTok store might be a scam
Why women behaving badly are dominating our screens
The greatest early Black Friday deals from Amazon, Greatest Buy, Walmart, and Target that you can shop now
‘Spellbound’ review: Netflix’s animated adventure finds its magic right at the end
2024 Black Friday ads: Greatest deals from Target, Greatest Buy, Walmart, Kohls, and more
Greatest Amazon Black Friday deals: Early savings on Fire TVs, robot vacuums, and MacBooks
A24 is selling chocolate now. But what would their films actually taste like?
-
Entertainment6 days agoHow to watch ‘Smile 2’ at home: When is it streaming?
-
Entertainment6 days ago‘Wicked’ review: Ariana Grande and Cynthia Erivo aspire to movie musical magic
-
Entertainment5 days agoA24 is selling chocolate now. But what would their films actually taste like?
-
Entertainment5 days agoNew teen video-viewing guidelines: What you should know
-
Entertainment4 days ago2024 Black Friday ads: Greatest deals from Target, Greatest Buy, Walmart, Kohls, and more
-
Entertainment4 days agoGreatest Amazon Black Friday deals: Early savings on Fire TVs, robot vacuums, and MacBooks
-
Entertainment3 days ago‘Spellbound’ review: Netflix’s animated adventure finds its magic right at the end
-
Entertainment3 days agoWhy women behaving badly are dominating our screens
