Office 365 Config Loophole Opens OneDrive, SharePoint Data to Ransomware Attack


Ransomware attacks may target files stored on OneDrive and SharePoint, researchers warn. Attackers can start an attack on cloud infrastructure and ransom files kept in SharePoint and OneDrive. These files are “auto-saved” and include cloud backups to give customers the idea their data is protected.

Researchers found a potentially hazardous flaw in Office 365 or Microsoft 365 that lets ransomware encrypt files stored on SharePoint and OneDrive in a way that renders them unrecoverable without specialised backups or a decryption key from the attacker. Read More…