Technology @lemmy.world Lee Duna @lemmy.nz 12 mo. ago

The new Outlook may give Microsoft access to third-party emails and logins - gHacks Tech News

ghacks.net The new Outlook may give Microsoft access to third-party emails and logins - gHacks Tech News

The new Outlook app gives Microsoft full access to emails, contacts and events of third-party accounts, and sometimes also login information.

33 comments

Man all the recent news on Microsoft products is just god awful. Ads in the OS, forced updates, pestering people when they close apps to explain why, this. Fuck sake idk how people put up with it.
- i know how. i do it for work, and have completely airgapped my home work life... so that windows work laptop, i honestly do not give 2 shits about the policies applied to it.. its above my pay grade.
  
  its only used for work, so if they want outlook to look at other work related 3rd party emails whatever.. why the fuck should i care. its not my laptop, its not even technically 'my' work.
  
  Seriously, I don't get why people don't understand this. Your work laptop is Windows? You're concerned about them having access to private data?
  
  Well buddy there's an easy fix! DONT LOGIN TO YOUR PERSONAL SHIT ON YOUR WORK COMPUTER.
  
  Permanently Deleted
- I don't know why anyone is surprised. They literally invented EEE.
- And linux is getting hood at gaming thanks to Steamdeck.
  
  "I fucks wit Steam Deck."
  
  Hood Linux
- Aren’t they also migrating everyone’s AD to Azure (and SharePoint as well)?
  
  Azure AD is now Entra ID. Please do not deadname the Microsoft cloud offering (even if we all think it chose kind of a dumb sounding new name 🤫).
  
  And Microsoft is heavily pushing their cloud services of course, but you can still set up on-prem AD as an option as well as other on-prem services.
  
  It's just that all their cross service interoperability stuff won't work as well if it's not all in the cloud. Like, all their stuff is designed to work together in the cloud and keep you entrenched in the ecosystem, like any company I guess, except I actually like using Teams/Office/SharePoint combo, it's executed well.
  
  not even kind of.
  
  from the enterprise side, half their shit still only works if you have an 'on prem' AD server. there are a ton of their products that simply do not function if you are 'cloud only'.
  
  they are no where near prepared to actually automigrate complex directories into azure/entra.. hell thats prolly why they changed the name, the 2 products will never have parity.
  
  Care to explain? Local AD is still there as is hybrid. On prem SharePoint still exists.
So happy I'm on Protonmail :)
- Yeah, but that 500MB storage . . . needs a game plan.
  
  Then pay for it.
  
  Do you want a free email that violates your privacy?
  
  Or do you want a privacy focued one?
  
  Pay them, but if you can't afford to, that's fine, just don't complain about their free account constraints.
- Between the VPN, the email, the password manager and their cloud storage, I feel like I’m easily getting my money’s worth. The second they add snoozing to Proton Mail, I’m moving away from Gmail completely.
  
  Snoozing?
Mozilla Thunderbird with Proton Bridge.
- Why bridged to Thunderbird?
  
  Proton doesn't offer a desktop client, and Thunderbird is great.
The title seems dramatic, but using the Outlook client to link a third-party account is supposed to connect to those emails with the respective credentials, right?
- It was interesting because the article didn't get too much into the details of it. But anything using Oauth2 like most major emails (eg Gmail) aren't impacted by this. It sounds like only the ones with user name and password are sent. Without understanding more detail it's kind of hard to be up-in-arms.
  
  Kinda like youre saying, at some point any email app needs your credentials to get your emails. The app, necessarily, can read your emails.
  
  The author of the article didn't do a good job explaining the issue imo. How does it "normally" work versus what Microsoft is doing?
  
  So many articles suck these days.
  
  Author is probably being vague because there's no real issue, but people love being recreationally angry over this kind of thing so it gets clicks.
  
  At least the OAuth2 access is protected. That's the detail I needed to see.
  
  So many articles suck these days.
  
  That's the direct implication of the innate nature of capitalism. News publishers drive researchers and writers into mill writing which unfortunately involves reworded mimicry of the few who publish the original "investigative research" they recorded from the source. They're doing it for money too, so they aren't alloted enough time to fully investigate off they want to publish their name to juicy details first before those who can and will fully investigate it to publish a full exposé.
  
  We expect news publishers to dramatize titles for the click-bait effect at their websites. But within a public forum platform (here), reposting the click-bait title into the community post effectively misleads forum readers because this space is personable and honest, so we expect an honest post title here. News publishers know this and exploit that in Reddit, but hopefully not here. Every time I see OPs copy-posting and running off, I have to suspect industry marketing efforts in effect, perhaps especially when OP is a bot.
  
  I really don't want to see Lemmy become polluted with news marketing as though this platform is at all open to the same abuse as that socialist dictatorship platform we left to be here.
- It's a little worse than that. Microsoft copies your password, credentials and all your emails to their server. Future emails then also go through their servers.
  
  If you have a business this probably constitutes a data leak.
  
  https://news.ycombinator.com/item?id=38212453
I wonder if the same people who use Spark, etc are up in arms.

You've viewed 33 comments.