You cannot use the new Outlook app without syncing these data with Microsoft’s servers, i.e. your usernames and passwords are sent to the company’s cloud servers. While the data is sent using TLS, the IMAP and SMTP username and password are sent to Microsoft in plain text. This could allow the company to access your emails, and share the data with third-parties.
Not only that, but sending usernames and passwords in plaintext allows for MITM attacks.
I think outlook iOS has been storing credentials on server since day one, even before it was acquired by Microsoft. I’m not sure what the new outlook app means.
Not only that, but sending usernames and passwords in plaintext allows for MITM attacks.
Isn’t MS on the government shit list right now over security missteps that led to the breach of gov officials?
Not sure what difference that makes since the military uses the MS office suite for everything
I expect what they mean is that the credentials are encrypted only in transit
I think outlook iOS has been storing credentials on server since day one, even before it was acquired by Microsoft. I’m not sure what the new outlook app means.