Microsoft 365 relies on weak encryption exposing messages to cryptanalysis

Jan

Jan

Who's the Boss?
Staff member
Joined
May 24, 2010
Messages
14,789
Reaction score
13,438
Location
The Rabbit Hole
Microsoft 365 uses weak encryption that exposes emails to snooping

Security researchers from WithSecure have discovered an unpatchable vulnerability in Microsoft Office 365 Message Encryption (OME) that lets hackers infer the contents of encrypted messages.

OME encrypts sent or received emails through the Electronic Code Book (ECB) mode, considered a broken or risky cryptographic algorithm.
 
Wow. ECB was a no-no when I went to varsity 20 years ago. I think even the paper ECB was standardized noted its weakness.

This is just sloppy...
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X