Outlook In Office 365

[scorpionmark]

Ok, I'm trying to get some clarification about Outlook in Office 365. Recently one of our users email started sending out xplicit emails to all sorts of addresses. The email address was blacklisted until this is resolved.

My question is WHO GOT HACKED? Since office 365 is in the cloud on Microsofts platform I say the Microsoft server/service, was hit. Another IT tech says that's impossible and someone just got the email address and password and just started sending the xplicit emails.

Can someone explain how this hack works? Thanks for any feedback gang.

 

[Darren]

The likelihood of MS being hacked is almost 0, at least for this kind of thing. User just had their email and password compromised. Change it.

It's possible the email is also just being spoofed and says their name but not their address. Probably just compromised account though.

 

[scorpionmark]

The likelihood of MS being hacked is almost 0, at least for this kind of thing. User just had their email and password compromised. Change it.

It's possible the email is also just being spoofed and says their name but not their address. Probably just compromised account though.

Thanks for the reply. I was trying to get a better understanding of how this could happen if it's on the MS cloud service. I immediately changed the password but I was hoping to find out how it happened so hopefully I could prevent it from happening again.

Thanks

 

[Darren]

Thanks for the reply. I was trying to get a better understanding of how this could happen if it's on the MS cloud service. I immediately changed the password but I was hoping to find out how it happened so hopefully I could prevent it from happening again.

Thanks

User probably uses same password for multiple things. Their computer could be compromised, lot of things really. Passwords are very rarely "hacked" in the traditional sense, usually socially engineered or lifted from a leak or unsecured workstation.