Organizations are being alerted by WithSecure researchers to a security flaw in Microsoft Office 365 Message Encryption (OME) that might be used by criminals to steal sensitive data. The disclosed ECB information can be used by attackers who manage to get numerous messages to decrypt their contents.
Organizations use OME to transmit secure emails both internally and externally. OME uses the Electronic Codebook (ECB) implementation, which is known to reveal some structural details about messages. Read More…