Outlook flaw compromises Exchange Native Protection


A flaw in the Outlook desktop implementation of the MAPI over HTTP protocol compromises the copy-on-write feature in Exchange Online Native Data Protection. The net result is that users whose mailboxes are on hold can remove attachments from messages without the removal being tracked and the original message (with its attachment) being captured. And when the attachment is gone, eDiscovery searches can't find it... It's a big issue for anyone working with Office 365  in the area of data governance and compliance.


0 Replies