Windows 365: Easy to read login data

Bad news for those interested in Windows 365: Microsoft’s cloud-based operating system may not be as secure as the Redmond-based company initially declared. This is suggested by the latest experience of a well-known programmer and IT security expert
Benjamin Delby
over there. Accordingly, the login data for Microsoft Azure cloud computing platform in Windows 365 can be read in a few simple steps – and even displayed in plain text. All Delpy needed was a custom version of its password theft tool

The expert has thoroughly checked Windows 365

In order to put Microsoft’s cloud-based operating system through its paces, Delpy signed up for the group’s free Windows 365 trial since August 2, 2021. And it was lucky: Although Microsoft only offered trial subscriptions due to excessive demand two days later, An IT security expert gained access to the system – and got to work.

Spoof: the system decrypts the data by itself

Shortly thereafter, it was time: Benjamin Delby was able to use a vulnerability he discovered in May 2021 to retrieve login data for people registered with a terminal server. The problem with this is that the login data is stored in an encrypted form, so it usually doesn’t help. However, Delpy managed to trick the Terminal Services process into decrypting the data itself and making it available in plain text.

Attack only with responsible access

Another difficulty: the security breach can only be exploited in conjunction with administrator access. However, it can be obtained in a few moments using common methods such as phishing emails or manipulated websites, which attackers use to install Trojans on systems. “It’s like reading passwords from a normal session. If I can spy on your password in terminal server sessions, I can use it on other systems where you can get more rights, data, etc.”

Windows 365: Security functionality missing

According to French IT security expert Delpy, only known security measures such as two-factor authentication (2FA), Windows Hello login using fingerprints or facial recognition are appropriate to protect yourself from such attacks. However, these security functions are not yet available in Windows 365. Open to see if that changes in the near future. Microsoft has not commented on the latest findings yet.

See also  Windows 11: Here is the first preview of Teams integration

Frank Mccarthy

<p class="sign">"Certified gamer. Problem solver. Internet enthusiast. Twitter scholar. Infuriatingly humble alcohol geek. Tv guru."</p>

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top