Microsoft Bug Hunter Able To Take Over Subdomain
PYMNTS
DECEMBER 11, 2018
What’s more, NK told TechCrunch that he discovered that Microsoft Office, Store and Sway apps could also be hijacked, sending authenticated login tokens to his domain instead of Microsoft. The malicious URL appears legitimate because the user is still logging in through Microsoft’s systems, noted the report.
Let's personalize your content