News Exchange/Outlook Autodiscover Bug Spills Emails/Passwords in plain text

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.


Senior Member
Autodiscover was first introduced in Exchange 2007.

As a kludge, Microsoft has begun registering autodiscover.* TLD's around the world since mid-September (BEFORE THE BAD GUYS DO) such as: Security Now! #838 12

discussion of the Autodiscover bug begins 1:16:48 into Security Now show
Last edited:

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!