Office365 platform being directly used to launch Conti ransomware-
https://itwire.com/security/infosec-expert-beaumont-slams-microsoft-over-hosting-malware-for-years.html
|
There are isolated problems with current patches, but they are well-known and documented on this site. |
-
Office 365 security issue
- This topic has 3 replies, 3 voices, and was last updated 3 years, 7 months ago.
AuthorViewing 1 reply threadAuthor-
Um, this one covers a LOT of territory:
“Microsoft called out as big malware hoster – thanks to OneDrive and Office 365 abuse”:
https://www.theregister.com/2021/10/18/microsoft_malware_brand/
“Microsoft has been branded as “the world’s best malware hoster for about a decade,” thanks to abuse of the Office 365 and Live platform, as well as its slow response to reports by security researchers.
“Infosec expert Kevin Beaumont, who worked at Microsoft as a senior threat intelligence analyst between June 2020 and April 2021, made the comments in response to a report by “cybersec professional” TheAnalyst.
One guy commented: “I loudly protest at the claim that Office 365 is more secure than its on-premises predecessors.”
Further rambling on that last comment would destroy the supreme simplicity of this truth.
Win7 Pro SP1 64-bit, Dell Latitude E6330 ("The Tank"), Intel CORE i5 "Ivy Bridge", 12GB RAM, Group "0Patch", Multiple Air-Gapped backup drives in different locations. Linux Mint Newbie
--
"The more kinks you put in the plumbing, the easier it is to stop up the pipes." -Scotty -
One guy commented: “I loudly protest at the claim that Office 365 is more secure than its on-premises predecessors.”
Further rambling on that last comment would destroy the supreme simplicity of this truth.
I agree so much. Finally someone who sees the reality as it is.
You cant be hacked when you have installed something (libre office for example) and do not launch aby of its applications. You must run macro, open email attachment or click the link in email to be attacked. Simply you have to perform some sort of action on infected file/internet address.
I say this all the time, but nobody listens, ususally I am considered as conspirator, or some contributors on this forum require proofs of my statements, saying that its not true. But Im not stupid, I can see how things work.Moving data and applications to the cloud is best way to be dependent on others (who will require payment from you, I bet my shoes on that) and definatelly it is not safer overall. Its just marketing trick.
Dell Latitude 3420, Intel Core i7 @ 2.8 GHz, 16GB RAM, W10 22H2 Enterprise
HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29
PRUSA i3 MK3S+
1 user thanked author for this post.
-
-
Thanks. I sometimes feel like the old guy shouting at the kids on the front lawn.
Nice to see there are some who still think “The Silicon Cloud of Unknowing” a divine gift to Humanity, if I may be excused a pun. *(*Title of a medieval book: https://en.wikipedia.org/wiki/The_Cloud_of_Unknowing )
Win7 Pro SP1 64-bit, Dell Latitude E6330 ("The Tank"), Intel CORE i5 "Ivy Bridge", 12GB RAM, Group "0Patch", Multiple Air-Gapped backup drives in different locations. Linux Mint Newbie
--
"The more kinks you put in the plumbing, the easier it is to stop up the pipes." -Scotty
Viewing 1 reply thread
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Discover the Best AI Tools for Everything
by 3 hours, 52 minutes ago
-
Edge Seems To Be Gaining Weight
by 6 hours, 11 minutes ago
-
Rufus is available from the MSFT Store
by 14 hours, 51 minutes ago
-
Microsoft : Ending USB-C® Port Confusion
by 17 hours ago
-
KB5061768 update for Intel vPro processor
by 2 hours, 53 minutes ago
-
Outlook 365 classic has exhausted all shared resources
by 15 hours, 11 minutes ago
-
My Simple Word 2010 Macro Is Not Working
by 12 hours, 45 minutes ago
-
Office gets current release
by 15 hours, 23 minutes ago
-
FBI: Still Using One of These Old Routers? It’s Vulnerable to Hackers
by 2 days, 5 hours ago
-
Windows AI Local Only no NPU required!
by 1 day, 13 hours ago
-
Stop the OneDrive defaults
by 2 days, 6 hours ago
-
Windows 11 Insider Preview build 27868 released to Canary
by 2 days, 16 hours ago
-
X Suspends Encrypted DMs
by 2 days, 18 hours ago
-
WSJ : My Robot and Me AI generated movie
by 2 days, 18 hours ago
-
Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor
by 2 days, 19 hours ago
-
OpenAI model sabotages shutdown code
by 2 days, 19 hours ago
-
Backup and access old e-mails after company e-mail address is terminated
by 2 days, 8 hours ago
-
Enabling Secureboot
by 2 days, 15 hours ago
-
Windows hosting exposes additional bugs
by 3 days, 3 hours ago
-
No more rounded corners??
by 2 days, 23 hours ago
-
Android 15 and IPV6
by 2 days, 13 hours ago
-
KB5058405 might fail to install with recovery error 0xc0000098 in ACPI.sys
by 3 days, 16 hours ago
-
T-Mobile’s T-Life App has a “Screen Recording Tool” Turned on
by 3 days, 18 hours ago
-
Windows 11 Insider Preview Build 26100.4202 (24H2) released to Release Preview
by 3 days, 13 hours ago
-
Windows Update orchestration platform to update all software
by 4 days, 2 hours ago
-
May preview updates
by 3 days, 13 hours ago
-
Microsoft releases KB5061977 Windows 11 24H2, Server 2025 emergency out of band
by 3 days, 5 hours ago
-
Just got this pop-up page while browsing
by 3 days, 18 hours ago
-
KB5058379 / KB 5061768 Failures
by 3 days, 15 hours ago
-
Windows 10 23H2 Good to Update to ?
by 2 days, 17 hours ago
Remembering Woody
