Microsoft error could open the door to the most damaging phishing scam to date – TechRadar

A Desktop Service Store (DS_STORE) file was left sitting on a publicly accessible web server belonging to Microsoft Vancouver in a significant security failing for the company, reports have claimed.

Had the file fallen into the hands of malicious actors, it could have been used for cyberattacks or malware distribution all over the web, as it stores metadata leading to WordPress database dumps, administrator usernames and email addresses, as well as hashed passwords for the Microsoft Vancouver website.

The vulnerability was spotted by cybersecurity researchers from CyberNews in September 2021, who, while investigating an underground Internet of Things (IoT) search engine, stumbled upon the DS_STORE file.

Security fail

These types of files should be heavily guarded, CyberNews says, as they display their folder structure, which could result in leaks of sensitive or confidential data.

This particular DS_STORE file allowed the researchers to easily see the contents of the server folder,…

Read Full Story: https://www.techradar.com/news/microsoft-error-could-open-the-door-to-the-most-damaging-phishing-scam-to-date

The post Microsoft error could open the door to the most damaging phishing scam to date – TechRadar first appeared on SEO, Marketing and Social News | OneSEOCompany.com.

source: https://news.oneseocompany.com/2021/12/08/microsoft-error-could-open-the-door-to-the-most-damaging-phishing-scam-to-date-techradar-2_2021120810457.html

Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.