Researchers have issued a warning that ransomware attacks may target files stored on SharePoint and OneDrive by abusing Microsoft Office 365 features.
These files, which are “auto-saved” and include cloud backups, generally give end customers the idea that their data is protected from a ransomware assault. Files saved on SharePoint and OneDrive, according to researchers, can occasionally be exposed to a ransomware attack. The study was conducted by Proofpoint and outlines a “possibly harmful piece of functionality.”
Proofpoint has identified a potentially hazardous feature in Office 365 or Microsoft 365 that enables ransomware to encrypt files in a way that renders them impossible to recover without the attacker’s decryption key.