Microsoft Registering Autodiscover Domains to Prevent Credentials Stealing
When configuring users' Exchange accounts, some mail clients don't implement the Autodiscover protocol properly causing them to try and authenticate to third-party autodiscover. Threat actors have managed to register some autodiscover domains, such as autodiscover.com, autodiscover.uk, and autodiscover.de, and started collecting Windows and mail credentials. To prevent threat actors from registering more faulty domains and stealing more credentials, Microsoft has started registering Autodiscover related domains. Read more...