Have you ever been curious about what life is like at another organization? How many meetings people are forced to attend? How many hours people are online in a given week? If so, you are in luck, because Microsoft makes this easy!
Let's find "nordmenn i skyen, og se hva de gjør...."
Microsoft Azure likes to make things simple, and they do so at the expense of security. Thanks to insecure default settings, strangers may be able to see your Microsoft Teams online presence and read your Out of Office replies. Since this is an Azure default setting, it is left on at many organizations, who may or may not be aware of this “feature”.
To demonstrate this, I have used Microsoft Teams to track the schedules of users at a prominent Norwegian organization. I have also performed an analysis of their Out of Office replies, looking for popular keywords, phrases, phone numbers, and more.
What can an attacker learn about a user based on their online presence? What information might an Out of Office message provide? In this talk we will explore how attackers might monitor an organization, gather statistics, and identify information about a user’s work and personal life. In addition to the monitoring of a Norwegian organization, I will share analysis from monitoring 100,000 Microsoft employees.
This presentation will be held by nyxgeek. nyxgeek is a hacker at TrustedSec. He has CVEs for products including Microsoft Skype for Business, and Tenable Nessus, and is currently engaged in a quest to get Microsoft to fix user enum. Other areas of interest include password spraying and password cracking. He has previously presented at DerbyCon, THOTcon, DefCon, and HackCon.
Dette foredraget vil du ikke gå glipp av - vi lover! Dette foredraget er et must hvis du skal beskytte deg på en god måte!