September 25, 2021 at 02:16PM

■■■□□ Autodiscover, a protocol used by Microsoft Exchange for automatic configuration of clients such as Microsoft Outlook, has a design flaw that causes the protocol to “leak” web requests to Autodiscover domains outside of the user’s domain but in the same TLD (i.e. Autodiscover.com).

https://www.guardicore.com/labs/autodiscovering-the-great-leak/

https://t.me/cKure/9508