Description of the security update for SharePoint Server 2013: October 10, 2017

Description of the security update for SharePoint Server 2013: October 10, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsof...

Microsoft OneDrive iOS App 8.13 Insecure URI Scheme Handling Vulnerability

Microsoft OneDrive iOS App version 8.13 suffers from insecure handling of URI schemes A short demo video is available here: https://youtu.be/0jZdM9peVSk SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Insecure Handling...

Microsoft OneDrive iOS App 8.13 Insecure URI Scheme Handling

A short demo video is available here: https://youtu.be/0jZdM9peVSk SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Insecure Handling Of URI Schemes product: Microsoft OneDrive iOS App vulnerable version: 8.13 fixed...

Description of the security update for SharePoint Server 2016: May 9, 2017

Description of the security update for SharePoint Server 2016: May 9, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

Microsoft OneDrive - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Microsoft OneDrive published at the 'play' market has multiple vulnerabilities...

MS16-121: Description of the security update for Word 2016: October 11, 2016

MS16-121: Description of the security update for Word 2016: October 11, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

Turkey Blocks GitHub, Google Drive and Dropbox to Censor RedHack Leaks

Turkey is again in the news for banning online services, and this time, it's a bunch of sites and services offered by big technology giants. Turkey government has reportedly blocked access to cloud storage services including Microsoft OneDrive, Dropbox, and Google Drive, as well as the code hosti...

MS16-107: Description of the security update for Office 2016: September 13, 2016

MS16-107: Description of the security update for Office 2016: September 13, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microso...

MS16-099: Description of the security update for Word 2016: August 9, 2016

MS16-099: Description of the security update for Word 2016: August 9, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

MS16-099: Description of the security update for Office 2016: August 9, 2016

MS16-099: Description of the security update for Office 2016: August 9, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

Careful Windows legacy authentication exposes your system account password-loophole warning-the black bar safety net

! When you are using a browser to access the site, the Windows of an old vulnerability might reveal your computer's username and password, the Microsoft login information, and even your VPN account password. Many years ago when Windows still use single-core processor and 256M of RAM, Microsoft...

MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016

MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...

URL Shorteners Put Private Cloud Data at Risk

URL shorteners are convenient, but for a long time gave security practitioners anxiety because it was difficult to determine where the shortened address was taking you. Two researchers have now given you new reasons to fear URL shorteners, especially for those storing and sharing data on...

Autosync OneDrive - OneSync - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Autosync OneDrive - OneSync published at the 'play' market has multiple vulnerabilities...

Microsoft Bounty Programs Announce Expansion - Bounty for Microsoft OneDrive

At Microsoft, we continue to add new properties to our security bug bounty programs to help keep our customer’s secure. Today, I’m pleased to announce the addition of Microsoft OneDrive to the Microsoft Online Services Bug Bounty Program. This addition further incentivizes security researchers to...

Microsoft OneDrive Login Detection (deprecated)

Binary data 8871.prm...

Microsoft OneDrive on Mac OS X Detection

Binary data 8846.prm...

Microsoft OneDrive iOS Mobile Application Detection

Binary data 8788.prm...

Microsoft OneDrive Detection via DNS

Binary data 8475.prm...

Microsoft Expands TLS, Forward Secrecy Support

Microsoft is no exception when it comes to large technology providers committing to encrypting the services its users depend on. Today, the company announced an update on the progress it has made in engineering those changes, including the news that Outlook.com, its web-based email service,...