Add Yahoo as a preferred source to see more of our stories on Google. Shipping companies, power plants and investment banks don't often share much in common, but new research shows they are all ...

A design issue in the Microsoft Exchange Autodiscover feature can cause Outlook and other third-party Exchange client applications to leak plaintext Windows domain credentials to external servers.

Microsoft is rushing to register Internet domains used to steal Windows credentials sent from faulty implementations of the Microsoft Exchange Autodiscover protocol. On Monday, Guardicore's Amit ...

A "design flaw" in the Microsoft Autodiscover protocol was subject to an investigation by researchers who found they were able to harvest domain credentials. On Wednesday, Guardicore Labs' AVP of ...

Hundreds of thousands of email credentials, many of which double as Active Directory domain credentials, came through to credential-trapping domains in clear text. Guardicore security researcher Amit ...

Autodiscover works great on user's local machines (desktops, laptops, etc) on the internal LAN. However I've got a Terminal Server with Outlook 2010 installed that Autodiscover fails every time you ...

Security researcher Amit Serper of Guardicore discovered a severe flaw in Microsoft’s autodiscover—the protocol which allows automagical configuration of an email account with only the address and ...

A "design flaw" in Microsoft Exchange's Autodiscover protocol allowed researchers to access 372,072 Windows domain credentials and 96,671 unique sets of credentials from applications such as Microsoft ...

A design vulnerability in Microsoft Exchange Autodiscover can leak Windows credentials The flaw can show the plaintext view of email addresses and passwords The research team identified more than ...