Martin's selection of few interesting IT Security, Privacy, and free tools from the Net: Secret Office 365 forensics tool - it does exist.(many individual Microsoft employees appear to have been genuinely unaware of this data’s existence)

Monday, July 9, 2018

Secret Office 365 forensics tool - it does exist.(many individual Microsoft employees appear to have been genuinely unaware of this data’s existence)

Friday, June 8. Out of the blue, an email popped onto the forensics community mailing list. It contained a single link, to an Anonymous video.

Ten days later, CrowdStrike released a beautiful blog post about the unmasked Activities API

Forensic analysts Ali Sawyer and Matt Durrin ran it against an Office 365 test instance set up in LMG’s research laboratory. It contained the granular details that we had only dreamed existed — and more.

In the case of the secret Office 365 tool, the very existence of this evidence was kept hidden by several respected forensics firms, as well as Microsoft itself, for well over a year by several accounts.

Today, most cloud providers have no obligation to collect logs. Even if they do have granular logs, like Microsoft, they have no requirement to make these easily accessible to customers.

http://lmgsecurity.com/exposing-the-secret-office-365-forensics-tool/

Martin's selection of few interesting IT Security, Privacy, and free tools from the Net

Monday, July 9, 2018

Secret Office 365 forensics tool - it does exist.(many individual Microsoft employees appear to have been genuinely unaware of this data’s existence)

No comments:

Post a Comment

Popular Posts

Categories

Blog Archive