A design issue in the Microsoft Exchange Autodiscover feature can cause Outlook and other third-party Exchange client applications to leak plaintext Windows domain credentials to external servers.

Add Yahoo as a preferred source to see more of our stories on Google. Shipping companies, power plants and investment banks don't often share much in common, but new research shows they are all ...

Microsoft is rushing to register Internet domains used to steal Windows credentials sent from faulty implementations of the Microsoft Exchange Autodiscover protocol. On Monday, Guardicore's Amit ...

Autodiscover works great on user's local machines (desktops, laptops, etc) on the internal LAN. However I've got a Terminal Server with Outlook 2010 installed that Autodiscover fails every time you ...

A "design flaw" in the Microsoft Autodiscover protocol was subject to an investigation by researchers who found they were able to harvest domain credentials. On Wednesday, Guardicore Labs' AVP of ...

Hundreds of thousands of email credentials, many of which double as Active Directory domain credentials, came through to credential-trapping domains in clear text. Guardicore security researcher Amit ...

A "design flaw" in Microsoft Exchange's Autodiscover protocol allowed researchers to access 372,072 Windows domain credentials and 96,671 unique sets of credentials from applications such as Microsoft ...

Autodiscover isn't working for my Outlook 2007 clients. Here's a little info about my setup:<BR><BR>My Exchange 2007 SP1 environment is setup in a hosted configuration per the guide located ...

When using Outlook in Mac with Office 365, you may receive a prompt saying — Outlook was redirected to the server autodiscover-s.outlook.com to get new settings for your account, Do you want to allow ...

Bugs in the implementation of Microsoft Exchange's Autodiscover feature have leaked approximately 100,000 login names and passwords for Windows domains worldwide. In a new report by Amit Serper, ...