Source |
CSO |
Identifiant |
5198668 |
Date de publication |
2022-06-16 13:32:00 (vue: 2022-06-16 21:05:11) |
Titre |
Ransomware could target OneDrive and SharePoint files by abusing versioning configurations |
Texte |
Researchers warn that documents hosted in the cloud might not be out of reach for ransomware actors and that while they're harder to permanently encrypt due to the automated backup features of cloud service, there are still ways to make life hard for organizations.Researchers from Proofpoint have devised a proof-of-concept attack scenario that involves abusing the document versioning settings in Microsoft's OneDrive and SharePoint Online services that are part of Office 365 and Microsoft 365 cloud offerings. Furthermore, since these services provide access to most of their features through APIs, potential attacks can be automated using command-line interface and PowerShell scripts.To read this article in full, please click here |
Envoyé |
Oui |
Condensat |
365 abusing access actors apis are article attack attacks automated backup can click cloud concept configurations could devised document documents due encrypt features files from full furthermore hard harder have here hosted interface involves life line make microsoft might most not offerings office onedrive online organizations out part permanently please potential powershell proof proofpoint provide ransomware reach read researchers scenario scripts service services settings sharepoint since target these they through using versioning warn ways command |
Tags |
Ransomware
|
Stories |
|
Notes |
|
Move |
|