Security News
A Microsoft 365 outage prevents access to files, such as Excel documents, stored on the SharePoint Online, OneDrive, Office, and Microsoft Teams cloud storage services. The outage started at approximately 11:40 AM EST, with admins and users reporting on social media that they could not open files stored on OneDrive or SharePoint.
That's true of a new phishing campaign that uses both Craigslist and OneDrive to trick people into installing malware. Clicking on a button in the email was supposed to take people to a form document that had been uploaded to an actual Microsoft OneDrive site.
Microsoft has been branded as "The world's best malware hoster for about a decade," thanks to abuse of the Office 365 and Live platform, as well as its slow response to reports by security researchers. TheAnalyst noted that a BazarLoader malware campaign was hosting its malware on Microsoft's OneDrive service.
Microsoft says a OneDrive issue prevents some Android users from uploading photos and videos from their camera roll to the cloud. OneDrive Android customers impacted by this problem are seeing "Camera upload is paused. To activate camera upload, give OneDrive permission to access your photos and media." errors.
Microsoft is investigating an ongoing issue impacting OneDrive for Business customers and causing their storage space to shrink down to the default setting or switching them to read-only mode, forcing some to delete files to free up space to work on their projects. OneDrive for Business is a cloud storage and file sharing service for enterprise customers that allows users to access, share, and collaborate on personal and shared work files across Microsoft 365.
Microsoft has shared a workaround for customers experiencing 0x8004de40 errors when trying to signing into their OneDrive accounts. These login problems have plagued OneDrive users for a while now, with reports streaming on social platforms and Microsoft's own user community for years.
Organizations are creating the perfect storm by not implementing security basicsEuropean organizations have a false sense of security when it comes to protecting themselves, with only 68% seeing themselves as vulnerable, down from 86% in 2018, according to Thales. Average cost of DNS attacks hovering around $924,00079% of organizations experienced DNS attacks, with the average cost of each attack hovering around $924,000, according to EfficientIP. PoC RCE exploit for SMBGhost Windows flaw releasedA security researcher has published a PoC RCE exploit for SMBGhost, a wormable flaw that affects SMBv3 on Windows 10 and some Windows Server versions.
While OneDrive may seem like a secure cloud storage solution for companies looking to use Microsoft's suite of business tools, many glaring security issues can expose sensitive data and personally identifiable information if proper protection protocols are ignored. While OneDrive does provide cloud storage, it doesn't have cloud backup functionality, a critical distinction that must be made when choosing which information to upload and share.
CloudNine launches CloudNine Collection Manager, a breakthrough data extraction solution from the global electronic discovery technology provider. Installed in minutes, Collection Manager defensibly performs native data collections from Office 365 email custodians, as well as Microsoft OneDrive cloud storage files.
Learn how to make specific folders and files on OneDrive more secure by using Personal Vault.