Knowledge base

October 07, 2022

OneDrive vulnerability breach: Bitdefender warns, Microsoft does not

IT security company Bitdefender is currently warning of a malware campaign by which fraudsters are trying to mine cryptocurrencies through a network of hacked PCs. The perfidy of it is the security gap – because it’s in OneDrive, but Microsoft takes no action.

Microsoft Forms vs Google Forms

Bitdefender had already detected about 700 attacked Microsoft OneDrive instances by May of this year. A security vulnerability related to sideloading in the DYNAMIC LINK LIBRARY (DLL) in Microsoft OneDrive is being exploited. The security firm handled this discovery in the familiar way: they contacted Microsoft, explained their findings and assumed Microsoft would issue a security update and warning. But none of that has happened so far.

“Microsoft does not interpret sideloading via a dynamic link library as a security vulnerability,” Bitdefender now writes in its disclosure of the vulnerability, explain ing what is behind the discovery and Microsoft’s response.

Performance affected

First, there is an active wave of attacks via the DLL vulnerability in OneDrive. Germany is one of the hardest hit countries. The sideloading vulnerability is currently being used to perform cryptomining using the hacked sources. Victims of the hack notice losses in system performance. However, the vulnerability is also suitable for ransomware attacks or infection with spyware.

Can OneDrive be hacked? What you really need to worry about

Take precautions

Microsoft currently sees no need for action. Cybercriminals abuse a regular function of the database, so a software update would be ineffective. Instead, Microsoft suggests precautionary measures. Users can install Microsoft OneDrive “per user” or “per machine”. The default setting is “per user” installation. In this configuration, users without special privileges can write to the folder in which OneDrive resides.

Hackers can place malicious malware here, modify executable files or overwrite them completely. Microsoft therefore recommends installing the OneDrive “on a per machine basis.” Instructions on how to do this can be found at: https://learn.microsoft.com/en-us/onedrive/per-machine-installation, Bitdefender explains. However, the “per machine” installation is not for everyone. Bitdefender therefore warns OneDrive users to be very careful: “Both virus protection and the operating system used should always be updated.

Source: researchsnipers

Want to know more?

Get in touch

Related
blogs

View all blogs
Governance Microsoft 365
February 13, 2024

I see, I see what you don’t: resources and governance in Microsoft 365

Read more
Een heldere basis voor de uitrol van governance
January 09, 2024

Go Governance or Go Home

Read more
October 03, 2023

Managing Governance and Compliance in Microsoft 365

Read more
microsoft purview
October 02, 2023

Microsoft Purview: Your Solution for Data Protection and Compliance

Read more
October 01, 2023

Improvements in Microsoft Teams: What’s New.

Read more
September 30, 2023

Windows 11 22H2 Adds Key Manager to Windows Hello

Read more
OpenAI-Header-chatgpt-can-now-see-hear-and-speak
September 29, 2023

ChatGPT Can Now Speak, Listen and Analyze Images

Read more
September 28, 2023

End-to-End Encryption comes to Teams Rooms on Android

Read more
Microsoft Intune
September 27, 2023

Is the New Microsoft Intune Suite the Right Step for Your Business?

Read more
September 26, 2023

Microsoft Defender for the Cloud: Increased Multi-Cloud Data Protection

Read more

Tech Updates: Microsoft 365, Azure, Cybersecurity & AI – Weekly in Your Mailbox.