A "design flaw" in the Microsoft Autodiscover protocol was subject to an investigation by researchers who found they were able to harvest domain credentials. On Wednesday, Guardicore Labs' AVP of ...

A design issue in the Microsoft Exchange Autodiscover feature can cause Outlook and other third-party Exchange client applications to leak plaintext Windows domain credentials to external servers.

Microsoft is rushing to register Internet domains used to steal Windows credentials sent from faulty implementations of the Microsoft Exchange Autodiscover protocol. On Monday, Guardicore's Amit ...

Bugs in the implementation of Microsoft Exchange's Autodiscover feature have leaked approximately 100,000 login names and passwords for Windows domains worldwide. In a new report by Amit Serper, ...

A design vulnerability in Microsoft Exchange Autodiscover can leak Windows credentials The flaw can show the plaintext view of email addresses and passwords The research team identified more than ...